AWS Certified Advanced Networking Specialty Practice Exam

What type of AWS Direct Connect configuration ensures low latency for joining an on-premises Active Directory?

• A. Public VIF
• B. Private VIF
• C. Transit VIF
• D. VPN Gateway

The correct answer is: Private VIF

Using a Private VIF (Virtual Interface) in AWS Direct Connect is the optimal choice for ensuring low latency when connecting to an on-premises Active Directory. A Private VIF enables a direct, dedicated connection to your Amazon VPC, facilitating communication between your on-premises network and resources hosted in your AWS environment. This direct connection bypasses the public internet, reducing latency and providing a more stable and reliable network performance, which is particularly important for applications that rely on Active Directory for authentication and authorization. By establishing a Private VIF, you can also control the routing of your traffic, ensuring that sensitive data, such as Active Directory queries and responses, remain secure and managed within your private network. This configuration is designed specifically for connecting to AWS resources that are not publicly accessible, providing the necessary speed and responsiveness required for directory services. In contrast, while a Public VIF allows access to AWS public services, it does not offer the same latency benefits for accessing resources like Active Directory that require a direct, private connection. A Transit VIF is generally used for connecting multiple VPCs or on-premises environments through AWS Transit Gateway and might introduce additional complexity and latency. A VPN Gateway, while providing a secure connection over the internet, often results in higher