Exams Questions
Exams Questions

A sports broadcasting channel has uploaded past sporting events to S3 bucket. They have enabled CDN using CloudFront to allow users across globe to access this content at lower latencies. They want to prevent users from directly accessing the content from S3 bucket. However, CloudFront IP ranges must be allowed to access S3 bucket and content. Which of the following is the best solution that you can recommend?

Trigger a Lambda function on receiving an SNS notification as and when AWS CloudFront IP ranges change. Lambda function updates the Security Groups with the updated IP ranges to allow CloudFront to access S3 bucket.
Deploy an EC2 instance with a piece of code to poll for changes in CloudFront IP ranges and update the Security Groups.
Create an Amazon CloudWatch event to update Security Groups at regular intervals with the updated CloudFront IP address ranges
All of the given options
Verified Answer
Correct Option - a

To get all Infosys Certified AWS Security Specialty Exam questions Join Telegram Group https://bit.ly/infy_premium_group

Home / All Vendors / Infosys Lex / Infosys Certified AWS Security Specialty /
Question
Telegram

We're passionate about offering best placement materials and courses!! A one stop place for Placement Materials. We daily post Offcampus updates and Placement Materials.

Important Links

Privacy Policy
Refund Policy
Terms & Conditions
About Us
Contact Us

Qtr No. 213, New Town Yehlanka Indore 454775

admin@prepflix.in

Updated on Thu, 3 Jul 2025