Learn how to efficiently provide individual and secure URLs for all customers using AWS API Gateway, Route 53, and AWS Certificate Manager with wildcard custom domains and certificates.
Table of Contents
Question
A company has a workload in an AWS Region. Customers connect to and access the workload by using an Amazon API Gateway REST API. The company uses Amazon Route 53 as its DNS provider. The company wants to provide individual and secure URLs for all customers.
Which combination of steps will meet these requirements with the MOST operational efficiency? (Choose three.)
A. Register the required domain in a registrar. Create a wildcard custom domain name in a Route 53 hosted zone and record in the zone that points to the API Gateway endpoint.
B. Request a wildcard certificate that matches the domains in AWS Certificate Manager (ACM) in a different Region.
C. Create hosted zones for each customer as required in Route 53. Create zone records that point to the API Gateway endpoint.
D. Request a wildcard certificate that matches the custom domain name in AWS Certificate Manager (ACM) in the same Region.
E. Create multiple API endpoints for each customer in API Gateway.
F. Create a custom domain name in API Gateway for the REST API. Import the certificate from AWS Certificate Manager (ACM).
Answer
A. Register the required domain in a registrar. Create a wildcard custom domain name in a Route 53 hosted zone and record in the zone that points to the API Gateway endpoint.
D. Request a wildcard certificate that matches the custom domain name in AWS Certificate Manager (ACM) in the same Region.
F. Create a custom domain name in API Gateway for the REST API. Import the certificate from AWS Certificate Manager (ACM).
Explanation
A. Register the required domain in a registrar and create a wildcard custom domain name in a Route 53 hosted zone with a record pointing to the API Gateway endpoint. This step allows you to create individual subdomains for each customer under the same domain, reducing the overhead of managing multiple domains and hosted zones.
D. Request a wildcard certificate that matches the custom domain name in AWS Certificate Manager (ACM) in the same Region as the API Gateway endpoint. This certificate will cover all subdomains created under the domain, providing secure communication (HTTPS) for each customer’s URL.
F. Create a custom domain name in API Gateway for the REST API and import the wildcard certificate from AWS Certificate Manager (ACM). This step associates the custom domain and the wildcard certificate with the API Gateway, enabling secure access to the API through the individual customer URLs.
By following these steps, the company can efficiently provide individual and secure URLs for all customers without the need to create separate hosted zones or API endpoints for each customer. The wildcard custom domain name and certificate simplify the configuration and management, while Route 53 and API Gateway handle the routing and secure communication.
Amazon AWS Certified Solutions Architect – Associate SAA-C03 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Amazon AWS Certified Solutions Architect – Associate SAA-C03 exam and earn Amazon AWS Certified Solutions Architect – Associate SAA-C03 certification.