A company intends to deploy a web application on AWS, aiming to distribute incoming traffic evenly across multiple Amazon EC2 instances. A key security criterion is the implementation of full encryption from the client to the web server. What AWS setup would fulfill this end-to-end encryption requirement?

Exam-Like

Deploy EC2 instances behind an Application Load Balancer (ALB). Use AWS Certificate Manager (ACM) to obtain an SSL certificate, which is then associated with the ALB. Export this certificate to each EC2 instance. Set up the ALB to handle HTTPS traffic by listening on port 443 and forwarding it to the same port on the instances.

33.3%

Group EC2 instances into a target group. Acquire an SSL certificate via AWS Certificate Manager (ACM). Establish an Amazon CloudFront distribution configured with this SSL certificate. Configure CloudFront to direct traffic to the target group serving as the origin server.

11.1%

Position EC2 instances behind an Application Load Balancer (ALB). Obtain an SSL certificate from AWS Certificate Manager (ACM) and link it to the ALB. Additionally, procure a third-party SSL certificate for each EC2 instance. Configure the ALB to manage HTTPS traffic by listening on port 443 and forwarding it to the same port on the instances.

55.6%

Set EC2 instances behind a Network Load Balancer (NLB). Install a third-party SSL certificate on both the NLB and each EC2 instance. Configure the NLB to handle HTTPS traffic by listening on port 443 and forwarding it to the same port on the instances.

0.0%

AWS Certified Solutions Architect - Professional

Get started today

Comments