A solutions architect is implementing federated access to AWS for users of the company's mobile application. Due to regulatory and security requirements, the application must use a custom-built solution for authenticating users and must use IAM roles for authorization. Which of the following actions would enable authentication and authorization and satisfy the requirements? (Choose two.)
A) Use a custom-built SAML-compatible solution for authentication and AWS SSO for authorization.
B) Create a custom-built LDAP connector using Amazon API Gateway and AWS Lambda for authentication. Store authorization tokens in Amazon DynamoDB, and validate authorization requests using another Lambda function that reads the credentials from DynamoDB.
C) Use a custom-built OpenID Connect-compatible solution with AWS SSO for authentication and authorization.
D) Use a custom-built SAML-compatible solution that uses LDAP for authentication and uses a SAML assertion to perform authorization to the IAM identity provider.
E) Use a custom-built OpenID Connect-compatible solution for authentication and use Amazon Cognito for authorization.
Correct Answer:
Verified
Q507: You are designing an intrusion detection prevention
Q508: Your company policies require encryption of sensitive
Q509: Your customer wishes to deploy an enterprise
Q510: A company has developed a custom tool
Q511: You are designing an SSL/TLS solution that
Q513: You control access to S3 buckets and
Q514: A company has developed a new release
Q515: You are designing a connectivity solution between
Q516: Your application is using an ELB in
Q517: You are the new IT architect in
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents