A solutions architect needs to secure an Amazon API Gateway REST API.

Amazon Web Services SAA-C03 Question Answer

A solutions architect needs to secure an Amazon API Gateway REST API. Users need to be able to log in to the API by using common external social identity providers (IdPs). The social IdPs must use standard authentication protocols such as SAML or OpenID Connect (OIDC). The solutions architect needs to protect the API against attempts to exploit application vulnerabilities.

Which combination of steps will meet these security requirements? (Select TWO.)

Create an AWS WAF web ACL that is associated with the REST API. Add the appropriate managed rules to the ACL.

Subscribe to AWS Shield Advanced. Enable DDoS protection. Associate Shield Advanced with the REST API.

Create an Amazon Cognito user pool with a federation to the social IdPs. Integrate the user pool with the REST API.

Create an API key in API Gateway. Associate the API key with the REST API.

Create an IP address filter in AWS WAF that allows only the social IdPs. Associate the filter with the web ACL and the API.

Amazon Web Services SAA-C03 View All Questions

Amazon Web Services SAA-C03 Summary

Vendor: Amazon Web Services
Product: SAA-C03
Update on: Jan 26, 2026
Questions: 649

Price: $52.5 ~~$149.99~~

Buy Now SAA-C03 PDF + Testing Engine Pack

A company runs a Node.

A company is redesigning its data intake process.

Month End Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: xmasmnth

A solutions architect needs to secure an Amazon API Gateway REST API.

The Answer Is:

Explanation:

Amazon Web Services SAA-C03 Summary

Payments We Accept

Contact Us