Examtopics

AWS Certified SysOps Administrator - Associate

167
169

Topic 1 Question 168
A company is storing media content in an Amazon S3 bucket and uses Amazon CloudFront to distribute the content to its users. Due to licensing terms, the company is not authorized to distribute the content in some countries. A SysOps administrator must restrict access to certain countries.

What is the MOST operationally efficient solution that meets these requirements?
- Configure the S3 bucket policy to deny the GetObject operation based on the S3:LocationConstraint condition.
- Create a secondary origin access identity (OAI). Configure the S3 bucket policy to prevent access from unauthorized countries.
- Enable the geo restriction feature in the CloudFront distribution to prevent access from unauthorized countries.
- Update the application to generate signed CloudFront URLs only for IP addresses in authorized counties.
ユーザの投票
コメント(2)
- 正解だと思う選択肢: C
  https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/georestrictions.html
  
  👍 3
  Xelnak2022/11/18
- 正解だと思う選択肢: C
  cccccc
  
  👍 2
  michaldavid2022/12/12
シャッフルモード

167
169