AWS SAA-C03 #56

A company has registered its domain name with Amazon Route 53. The company uses Amazon API Gateway in the ca-central-1 Region as a public interface for its backend microservice APIs. Third-party services consume the APIs securely. The company wants to design its API Gateway URL with the company's domain name and corresponding certificate so that the third-party services can use HTTPS.

Which solution will meet these requirements?

A. Create stage variables in API Gateway with Name="Endpoint-URL" and Value="Company Domain Name" to overwrite the default URL. Import the public certificate associated with the company's domain name into AWS Certificate Manager (ACM).

B. Create Route 53 DNS records with the company's domain name. Point the alias record to the Regional API Gateway stage endpoint. Import the public certificate associated with the company's domain name into AWS Certificate Manager (ACM) in the us-east-1 Region.

C. Create a Regional API Gateway endpoint. Associate the API Gateway endpoint with the company's domain name. Import the public certificate associated with the company's domain name into AWS Certificate Manager (ACM) in the same Region. Attach the certificate to the API Gateway endpoint. Configure Route 53 to route traffic to the API Gateway endpoint.

D. Create a Regional API Gateway endpoint. Associate the API Gateway endpoint with the company's domain name. Import the public certificate associated with the company's domain name into AWS Certificate Manager (ACM) in the us-east-1 Region. Attach the certificate to the API Gateway APIs. Create Route 53 DNS records with the company's domain name. Point an A record to the company's domain name.


The correct solution is C.

You should create a Regional API Gateway endpoint and associate the API Gateway endpoint with the company's domain name. Import the public certificate associated with the company's domain name into AWS Certificate Manager (ACM) in the same Region. Attach the certificate to the API Gateway endpoint. Finally, configure Route 53 to route traffic to the API Gateway endpoint.

This solution meets all the requirements because it allows you to use your own domain name for your API Gateway endpoint, ensures that traffic is routed correctly via Route 53, and secures your APIs with HTTPS by using a certificate from ACM. Remember, when you use ACM with API Gateway, the certificate must be in the same Region as your API endpoint.

Sure, here's why the other options are incorrect:

Option A: Creating stage variables in API Gateway with Name="Endpoint-URL" and Value="Company Domain Name" to overwrite the default URL is not a valid approach. Stage variables are used to pass operational parameters to a deployment stage, not to overwrite the default URL of the API Gateway.

Option B: While creating Route 53 DNS records with the company's domain name and pointing the alias record to the Regional API Gateway stage endpoint is a valid step, importing the public certificate associated with the company's domain name into AWS Certificate Manager (ACM) in the us-east-1 Region is incorrect. The certificate needs to be in the same region as your API endpoint.

Option D: This option incorrectly suggests importing the public certificate associated with the company's domain name into AWS Certificate Manager (ACM) in the us-east-1 Region. As mentioned before, the certificate needs to be in the same region as your API endpoint. Also, pointing an A record to the company's domain name is not a valid step in this context. The A record should point to the API Gateway endpoint.

相关推荐
编程在手天下我有6 分钟前
Redis 数据类型全览:特性、场景与操作实例
数据库·redis·数据结构与算法
左灯右行的爱情10 分钟前
缓存并发更新的挑战
jvm·数据库·redis·后端·缓存
Qiuner1 小时前
软件设计师速通其一:计算机内部数据表示
服务器·数据库·信号处理
文牧之2 小时前
PostgreSQL oracle_fdw 扩展解析
运维·数据库·postgresql
一个天蝎座 白勺 程序猿3 小时前
Python爬虫(9)Python数据存储实战:基于pymysql的MySQL数据库操作详解
数据库·python·mysql
Bug哆哆3 小时前
数据库安装和升级和双主配置
数据库
Themberfue3 小时前
Redis ⑥-string | hash | list
数据库·redis·分布式·缓存·list
jiaoxingk3 小时前
有关爬虫中数据库的封装——单线程爬虫
数据库·爬虫·python·mysql
唐僧洗头爱飘柔95274 小时前
(云计算HCIP)HCIP全笔记(十三)本篇介绍虚拟化技术,内容包含:虚拟化资源、虚拟化过程、I/O虚拟化、虚拟化架构KVM和Xen介绍、主流虚拟化技术介绍
笔记·架构·云计算·hcip·kvm·xen·i/o虚拟化
24k小善4 小时前
FlinkJobmanager深度解析
java·大数据·flink·云计算