A financial institution has the following security requirements: ✑ Cloud-based users must be contained in a separate authentication domain. ✑ Cloud-based users cannot access on-premises systems. As part of standing up a cloud environment, the financial institution is creating a number of Amazon managed databases and Amazon EC2 instances. An Active Directory service exists on-premises that has all the administrator accounts, and these must be able to access the databases and instances. How would the organization manage its resources in the MOST secure manner? (Choose two.) A. Configure an AWS Managed Microsoft AD to manage the cloud resources. B. Configure an additional on-premises Active Directory service to manage the cloud resources. C. Establish a one-way trust relationship from the existing Active Directory to the new Active Directory service. D. Establish a one-way trust relationship from the new Active Directory to the existing Active Directory service. E. Establish a two-way trust between the new and existing Active Directory services. Suggested Answer: BC Community Answer: AD This question is in SCS-C01 AWS Certified Security – Specialty Exam For getting AWS Certified Security – Specialty Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by Amazon. Trademarks, certification & product names are used for reference only and belong to Amazon. The website does not contain actual questions and answers from Amazon's Certification Exam.
Please login or Register to submit your answer