Which combination of steps should a Security Engineer take to federate the company’s on-premises Active Directory with AWS? (Choose two.)

September 14, 2021 by Admin

A company plans to move most of its IT infrastructure to AWS. They want to leverage their existing on-premises Active Directory as an identity provider for AWS.

Which combination of steps should a Security Engineer take to federate the company’s on-premises Active Directory with AWS? (Choose two.)

  • Create IAM roles with permissions corresponding to each Active Directory group.
  • Create IAM groups with permissions corresponding to each Active Directory group.
  • Configure Amazon Cloud Directory to support a SAML provider.
  • Configure Active Directory to add relying party trust between Active Directory and AWS.
  • Configure Amazon Cognito to add relying party trust between Active Directory and AWS.

Leave a Reply