🔥 3-day streak
Professional Cloud Security Engineer80 / 152
Question 80 of 152
A financial services company exposes a partner-facing API through a global external Application Load Balancer. Regulatory requirements mandate that only clients presenting a valid X.509 certificate issued by the company's internal certificate authority may establish a connection to the load balancer. The security team must reject any client that does not present a trusted certificate at the TLS layer, before the request reaches the backend. Which approach meets this requirement?
Reviewed for accuracy · Report an issueNext question