Learn how to implement geographic restrictions and allow lists in AWS CloudFront to control access to your content based on viewer locations, ideal for phased rollouts and regional restrictions.
Table of Contents
Question
A global video streaming company uses Amazon CloudFront as a content distribution network (CDN). The company wants to roll out content in a phased manner across multiple countries. The company needs to ensure that viewers who are outside the countries to which the company rolls out content are not able to view the content.
Which solution will meet these requirements?
A. Add geographic restrictions to the content in CloudFront by using an allow list. Set up a custom error message.
B. Set up a new URL tor restricted content. Authorize access by using a signed URL and cookies. Set up a custom error message.
C. Encrypt the data for the content that the company distributes. Set up a custom error message.
D. Create a new URL for restricted content. Set up a time-restricted access policy for signed URLs.
Answer
A. Add geographic restrictions to the content in CloudFront by using an allow list. Set up a custom error message.
Explanation
The correct solution to meet the requirements of the global video streaming company is Option A: Add geographic restrictions to the content in CloudFront by using an allow list. Set up a custom error message.
Here’s a detailed explanation:
- Geographic Restrictions in CloudFront: Amazon CloudFront allows you to restrict access to your content based on the geographic location of the viewer. This feature is known as “Geographic Restrictions” or “Geo-Restrictions”.
- Allow List: In this case, the company wants to roll out content in a phased manner across multiple countries, so they should use an allow list. An allow list specifies the countries or regions from which viewers are allowed to access the content. Viewers from locations not included in the allow list will be denied access.
- Custom Error Message: CloudFront also allows you to set up a custom error message that will be displayed to viewers who are denied access due to geographic restrictions. This custom error message can provide an explanation or instructions to the viewers who are unable to access the content due to their location.
By using geographic restrictions with an allow list in CloudFront, the company can effectively control which countries or regions have access to their content during the phased rollout. Viewers from countries not included in the allow list will be denied access and presented with the custom error message, preventing them from viewing the content prematurely.
This solution meets the requirements of the global video streaming company by ensuring that viewers outside the targeted countries are unable to view the content during the phased rollout, while still allowing authorized viewers to access the content seamlessly through CloudFront’s CDN.
Amazon AWS Certified Solutions Architect – Associate SAA-C03 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Amazon AWS Certified Solutions Architect – Associate SAA-C03 exam and earn Amazon AWS Certified Solutions Architect – Associate SAA-C03 certification.