Which combination of steps should a Security Engineer take to federate the company’s on-premises Active Directory with AWS?

A company plans to move most of its IT infrastructure to AWS.They want to leverage their existing on-premises Active Directory as an identity provider for AWS.

(Choose two.)

Create IAM roles with permissions corresponding to each Active Directory group.

Create IAM groups with permissions corresponding to each Active Directory group.

Configure Amazon Cloud Directory to support a SAML provider.

Configure Active Directory to add relying party trust between Active Directory and AWS.

Configure Amazon Cognito to add relying party trust between Active Directory and AWS.

Previous Post: Which solution will meet these requirements with the LEAST operational overhead?

Next Post: Which of the following solutions achieve this goal?

2 Comments

Author

I assess that the answer is:
Create IAM roles with permissions corresponding to each Active Directory group.

Frank

7 months ago

Permalink

Reply
Author

As far as I can tell, the answer is:
Create IAM roles with permissions corresponding to each Active Directory group.

Joshua

1 month ago

Permalink

Reply

Free study guides, practices test, sample questions

Which combination of steps should a Security Engineer take to federate the company’s on-premises Active Directory with AWS?

2 Comments

Leave a Reply Cancel reply