Answer-first summary for fast verification
Answer: Use AWS Certificate Manager (ACM).
Option B is CORRECT because AWS Certificate Manager (ACM) simplifies the provisioning, management, and deployment of SSL/TLS certificates for use with AWS services and your internal connected resources. ACM handles the complexity of creating and managing certificates, including automatic renewal and deployment, thereby reducing operational overhead.
Author: Ritesh Yadav
Ultimate access to all questions.
Question 29/58
A company hosts its applications on Amazon EC2 instances. The company must use SSL/TLS connections that encrypt data in transit to communicate securely with AWS infrastructure that is managed by a customer.
A data engineer needs to implement a solution to simplify the generation, distribution, and rotation of digital certificates. The solution must automatically renew and deploy SSL/TLS certificates.
Which solution will meet these requirements with the LEAST operational overhead?
A
Store self-managed certificates on the EC2 instances.
B
Use AWS Certificate Manager (ACM).
C
Implement custom automation scripts in AWS Secrets Manager.
D
Use Amazon Elastic Container Service (Amazon ECS) Service Connect.
No comments yet.