A company runs an application on AWS that needs to be accessed only by employees. Most employees work from the office, but others work remotely or travel. How can the Security Engineer protect this workload so that only employees can access it?
A) Add each employee's home IP address to the security group for the application so that only those users can access the workload.
B) Create a virtual gateway for VPN connectivity for each employee, and restrict access to the workload from within the VPC.
C) Use a VPN appliance from the AWS Marketplace for users to connect to, and restrict workload access to traffic from that appliance.
D) Route all traffic to the workload through AWS WAF. Add each employee's home IP address into an AWS WAF rule, and block all other traffic.
Correct Answer:
Verified
Q40: A Security Engineer has been asked to
Q41: A Development team has asked for help
Q42: The Security Engineer is managing a traditional
Q43: Some highly sensitive analytics workloads are to
Q44: A Developer who is following AWS best
Q46: A Systems Administrator has written the following
Q47: A Security Analyst attempted to troubleshoot the
Q48: An organization operates a web application that
Q49: An application has been built with Amazon
Q50: Which of the following is the most
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents