A company is deploying a third-party web application on AWS, which is packaged as a Docker image and deployed as an AWS Fargate service in Amazon Elastic Container Service (Amazon ECS). Traffic to the application is managed by an Application Load Balancer (ALB). The company requires that only a specific list of users can access the application from the internet, without modifying the application or integrating it with an identity provider. Additionally, all users must be authenticated using multi-factor authentication (MFA). Which solution meets these requirements? | AWS Certified Solutions Architect - Professional Quiz