Topic 1 Question 337
A company has a secure website running on Amazon EC2 instances behind an Application Load Balancer (ALB). An SSL certificate from AWS Certificate Manager (ACM) is used on the ALB. Users with legacy web browsers are experiencing issues with the website.
How should the SysOps administrator resolve these issues in the MOST operationally efficient manner?
Create a new SSL certificate in ACM and install the new certificate on the ALB to support legacy web browsers.
Create a second ALB and install a custom SSL certificate with a different domain name on the second ALB to support legacy web browsers.
Remove the ALB from the configuration and install a custom SSL certificate on each web server.
Update the SSL negotiation configuration of the ALB with a security policy that contains ciphers for legacy web browsers.
ユーザの投票
コメント(5)
- 正解だと思う選択肢: D
Resolution:
- Identify your load balancer's security policy
- Determine that protocols and ciphers that are supported by your load balancer's security policy
- Update your load balancer's security policy, if necessary https://repost.aws/knowledge-center/elb-fix-ssl-tls-negotiation-error
👍 5Gomer2023/06/16 - 正解だと思う選択肢: D
D is the answer
👍 2Pete9872023/06/30 The AWS ALB supports various SSL policies, which define the ciphers and protocols that the ALB uses to negotiate SSL connections. By choosing a security policy that includes compatible ciphers for older browsers, the administrator can address the compatibility issues. This solution allows the company to continue using the ALB, which provides scalability, load balancing, and other benefits, while ensuring accessibility for users with legacy web browsers.
👍 2Pete9872023/06/30
シャッフルモード