A company runs a real-time data ingestion solution on AWS. The solution consists of the most recent version of Amazon Managed Streaming for Apache Kafka (Amazon MSK). The solution is deployed in a VPC in private subnets across three Availability Zones. A solutions architect needs to redesign the data ingestion solution to be publicly available over the internet. The data in transit must also be encrypted. Which solution will meet these requirements with the MOST operational efficiency? A. configure public subnets in the existing VP B. Deploy an MSK cluster in the public subnets. Update the MSK cluster security settings to enable mutual TLS authentication. C. Create a new VPC that has public subnets. Deploy an MSK cluster in the public subnets. Update the MSK cluster security settings to enable mutual TLS authentication. D. Deploy an Application Load Balancer (ALB) that uses private subnets. configure an ALB security group inbound rule to allow inbound traffic from the VPC CIDR block for HTTPS protocol. E. Deploy a Network Load Balancer (NLB) that uses private subnets. configure an NLB listener for HTTPS communication over the internet. Â Correct Answer: A This question is in SAA-C03 exam For getting AWS Certified Solutions Architect Associate Certificate
Disclaimers: The website is not related to, affiliated with, endorsed or authorized by Amazon. Trademarks, certification & product names are used for reference only and belong to Amazon. The website does not contain actual questions and answers from Amazon's Certification Exams.
Please login or Register to submit your answer
