AWS Certified Solutions Architect - Professional

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Employ AWS Firewall Manager to create a web ACL rule incorporating an IPSet of the public addresses from the branch office locations, and link this ACL to the WorkSpaces directory.

The correct answer is B. Using AWS Firewall Manager to create a web ACL rule with an IPSet that includes the public addresses of the branch office locations, and associating this web ACL with the WorkSpaces directory, provides a scalable and efficient way to enforce security policies. This method allows for easy management and updating of the IPSet when new branch offices are added, offering the most operational efficiency. Other options, such as using IP access control groups or configuring Windows Firewall on custom images, would require more manual updates and management as branch offices expand. Additionally, issuing certificates through ACM does not directly address the management of IP-based access restrictions as efficiently as an AWS Firewall Manager solution.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: Employ AWS Firewall Manager to create a web ACL rule incorporating an IPSet of the public addresses from the branch office locations, and link this ACL to the WorkSpaces directory.

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

A company aims to replace aging desktops with Amazon WorkSpaces and thin client devices for employees accessing applications handling Clinical trial data. The corporate security policy mandates that application access be restricted solely to company branch office locations, with an additional branch office planned within the next six months. What solution provides the highest operational efficiency while meeting these requirements?

Exam-Like

Establish an IP access control group rule listing the public addresses of the branch offices and associate this group with the WorkSpaces directory.

0.0%

Employ AWS Firewall Manager to create a web ACL rule incorporating an IPSet of the public addresses from the branch office locations, and link this ACL to the WorkSpaces directory.

75.0%

Utilize AWS Certificate Manager (ACM) to issue trusted device certificates to the machines at the branch office locations and enable restricted access on the WorkSpaces directory.

25.0%

Develop a custom WorkSpace image with Windows Firewall configured to limit access to the public addresses of the branch offices and deploy the WorkSpaces using this image.