Answer-first summary for fast verification
Answer: Update the security policy of the Transfer Family server to specify a minimum protocol version of TLS 1.2.
AWS Transfer Family allows you to specify a security policy that contains a combination of cryptographic algorithms and protocols for the server. You can select a security policy that enforces TLS 1.2 or above, thus complying with the company policy. SSL certificates and SSH keys do not enforce the TLS version policy natively at the server's protocol level.
Author: Ritesh Yadav
Ultimate access to all questions.
Question 22 A company is using an AWS Transfer Family server to migrate data from an on-premises environment to AWS. Company policy mandates the use of TLS 1.2 or above to encrypt the data in transit. Which solution will meet these requirements?
A
Generate new SSH keys for the Transfer Family server. Make the old keys and the new keys available for use.
B
Update the security group rules for the on-premises network to allow only connections that use TLS 1.2 or above.
C
Update the security policy of the Transfer Family server to specify a minimum protocol version of TLS 1.2.
D
Install an SSL certificate on the Transfer Family server to encrypt data transfers by using TLS 1.2.
No comments yet.