Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: validbest

Discussions
  1. Home
  2. Discussions
  3. Amazon Web Services
  4. AWS Solutions Architect Associate
  5. SAA-C03 Discussions
  6. SAA-C03 Exam Topic 17 Question 141 Discussion
 Amazon Web Services Discussions
Exam SAA-C03 All Questions
Exam SAA-C03 All Questions

View all questions & answers for the SAA-C03 exam

Go to Exam

Amazon Web Services AWS Solutions Architect Associate SAA-C03 Question # 141 Topic 17 Discussion

SAA-C03 Exam Topic 17 Question 141 Discussion:
Question #: 141
Topic #: 17

A solutions architect must design a solution that uses Amazon CloudFront with an Amazon S3 origin to store a static website. The company's security policy requires that all website traffic be inspected by AWS WAR

How should the solutions architect comply with these requirements?
A.

Configure an S3 bucket policy lo accept requests coming from the AWS WAF Amazon Resource Name (ARN) only.

B.

Configure Amazon CloudFront to forward all incoming requests to AWS WAF before requesting content from the S3 origin.

C.

Configure a security group that allows Amazon CloudFront IP addresses to access Amazon S3 only. Associate AWS WAF to CloudFront.

D.

Configure Amazon CloudFront and Amazon S3 to use an origin access identity (OAI) to restrict access to the S3 bucket. Enable AWS WAF on the distribution.

Get Premium SAA-C03 Questions
Actual exam question for Amazon Web Services SAA-C03 exam by Orin30802 at May 1, 2026, 7:25:39 PM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit