Which of the following is a valid option for storing SSL/TLS certificates?
Custom SSL certificate that is stored in AWS Key Management Service (AWS KMS)
Default SSL certificate that is stored in Amazon CloudFront.
Custom SSL certificate that is stored in AWS Certificate Manager (ACM)
Default SSL certificate that is stored in Amazon S3
Explanations:
AWS Key Management Service (AWS KMS) is primarily used for managing encryption keys and does not store SSL/TLS certificates directly. SSL/TLS certificates need to be stored in services designed for certificate management.
Amazon CloudFront can use SSL certificates, but it relies on certificates stored in AWS Certificate Manager (ACM) or imported by users. It does not have a default SSL certificate that can be used independently; thus, this option is incorrect.
AWS Certificate Manager (ACM) is specifically designed to handle the provisioning, management, and deployment of SSL/TLS certificates. It allows users to create and manage custom SSL certificates for their domains.
Amazon S3 is an object storage service and does not support the direct storage of SSL/TLS certificates. Certificates need to be managed by services like AWS Certificate Manager, making this option incorrect.