You need a service that can provide you with control over which traffic to allow or block to your web applications by defining customizable web security rules. Instances must be launched from a HVM AMIĪnswer :Instances must be launched from a HVM AMI.Instances must be EBS backed, not Instance-store backed.Instances must be launched from a PV AMI.What are the pre-requisites for using enhanced networking? (choose 2) You would like to deploy an EC2 instance with enhanced networking. Use AWS(Amazon Web Service) Simple AD and create a trust relationship with IAMĪnswer :Develop an on-premise custom identity provider (IdP) and use the AWS(Amazon Web Service) Security Token Service (STS) to provide temporary security credentials.Create a policy in IAM that references users in the on-premise LDAP directory.Use SAML to develop a direct integration from the on-premise LDAP directory to the relevant AWS(Amazon Web Service) services.Develop an on-premise custom identity provider (IdP) and use the AWS(Amazon Web Service) Security Token Service (STS) to provide temporary security credentials.What method would you suggest using to enable this integration?
As part of a gradual migration into AWS(Amazon Web Service) you would like to integrate the LDAP directory with AWS's Identity and Access Management (IAM) solutions so that existing users can authenticate against AWS(Amazon Web Service) services. Your company has an on-premise LDAP directory service.