AWS Certified Solutions Architect Associate SAA-C03 Practice Question
A company wants to expose some internal services to external developers over the Internet. They need a solution that offers authentication, rate limiting, and the ability to monitor and control usage. Which service should they use to meet these requirements?
You selected this option
Use Amazon API Gateway to expose the services with API keys and usage plans.
You selected this option
Deploy the services behind an Application Load Balancer with Amazon Cognito for authentication.
You selected this option
Use AWS Lambda to host the services and implement custom authentication.
You selected this option
Host the services in Amazon EC2 instances using security groups for access control.
Amazon API Gateway is a fully managed service that makes it easy to create, publish, maintain, monitor, and secure APIs at any scale. It provides features like API keys for authentication, usage plans to manage and control access, and throttling to prevent overload. By using API Gateway, the company can efficiently expose their internal services to external developers with the required access control and monitoring.
An Application Load Balancer combined with Amazon Cognito can handle authentication but does not offer built-in capabilities for usage monitoring and rate limiting per developer.
Hosting the services in Amazon EC2 instances with security groups controls network access but lacks API management features such as authentication, rate limiting, and usage monitoring.
Using AWS Lambda to host the services and implementing custom authentication would require additional effort to build features that API Gateway already covers out of the box.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are the main features of Amazon API Gateway?
Open an interactive chat with Bash
What is the role of API keys and usage plans in API Gateway?
Open an interactive chat with Bash
How does Amazon API Gateway integrate with other AWS services?