In the AWS Cloud, a business maintains an online shopping platform. HTTPS security is provided by the gateway via the use of a TLS certificate on an Elastic Load Balancer (ELB).
Recently, the site had an outage due to the expiration of the TLS certificate. To prevent this problem in the future, a SysOps administrator must implement a system that automatically renews certificates.

What is the MOST OPTIMAL option that satisfies these requirements?
A. Request a public certificate by using AWS Certificate Manager (ACM). Associate the certificate from ACM with the ELB. Write a scheduled AWS Lambda function to renew the certificate every 18 months.
B. Request a public certificate by using AWS Certificate Manager (ACM). Associate the certificate from ACM with the ELB. ACM will automatically manage the renewal of the certificate.
C. Register a certificate with a third-party certificate authority (CA). Import this certificate into AWS Certificate Manager (ACM). Associate the certificate from ACM with the ELB. ACM will automatically manage the renewal of the certificate.
D. Register a certificate with a third-party certificate authority (CA). Configure the ELB to import the certificate directly from the CA. Set the certificate refresh cycle on the ELB to refresh when the certificate is within 3 months of the expiration date.

  Discussion forum

Question
0

Leave an answer