AWS Certified Advanced Networking Specialty Practice Exam

Disable ads (and more) with a membership for a one time $4.99 payment

Prepare for the AWS Certified Advanced Networking Specialty Exam with detailed flashcards and multiple-choice questions. Each question includes hints and explanations. Ace your exam with confidence!

Practice this question and more.

What is the best design choice for providing secure access to a development system when each developer has their own account?

Deploy the development system in various VPCs
Set up a centralized development account
Utilize AWS PrivateLink for access
Create dedicated IPsec tunnels for each account

The correct answer is: Utilize AWS PrivateLink for access

Utilizing AWS PrivateLink for secure access to a development system is a strong choice because it establishes a securely managed network connection between services in AWS without the need for an internet gateway, NAT device, VPN connection, or AWS Direct Connect connection. This method allows developers to access the development system over a private network, thereby preventing exposure to the public internet and reducing the potential attack surface. By using PrivateLink, each developer can connect through their own account to the development system in a secure manner. The service effectively uses endpoints that are specific to Virtual Private Clouds (VPCs), which enhances security by allowing developers to connect to services privately, while also simplifying the management of access controls and preventing data from traversing the public network. This approach aligns well with AWS best practices for network security and access control, particularly when dealing with sensitive development environments where each developer's access should be tightly controlled. It also facilitates easier auditing and monitoring of access to the development system, which is crucial in a development environment where multiple accounts are being utilized.