A company is deploying a third-party web application on AWS, which is packaged as a Docker image and deployed as an AWS Fargate service in Amazon Elastic Container Service (Amazon ECS). Traffic to the application is managed by an Application Load Balancer (ALB). The company requires that only a specific list of users can access the application from the internet, without modifying the application or integrating it with an identity provider. Additionally, all users must be authenticated using multi-factor authentication (MFA). Which solution meets these requirements?

Exam-Like

Create a user pool in Amazon Cognito, configure it for the application, populate it with the required users, and set it to require MFA. Then, configure a listener rule on the ALB to require authentication through the Amazon Cognito hosted UI.

42.9%

Configure the users in AWS Identity and Access Management (IAM), attach a resource policy to the Fargate service requiring users to use MFA, and configure a listener rule on the ALB to require authentication through IAM.

14.3%

Configure the users in AWS Identity and Access Management (IAM), enable AWS IAM Identity Center (AWS Single Sign-On), configure resource protection for the ALB, and create a resource protection rule requiring users to use MFA.

28.6%

Create a user pool in AWS Amplify, configure it for the application, populate it with the required users, set it to require MFA, and configure a listener rule on the ALB to require authentication through the Amplify hosted UI.

14.3%

AWS Certified Solutions Architect - Professional

Comments

Get started today