🔥 3-day streak
Professional Cloud Security Engineer80 / 152
Question 80 of 152

A financial services company exposes a partner-facing API through a global external Application Load Balancer. Regulatory requirements mandate that only clients presenting a valid X.509 certificate issued by the company's internal certificate authority may establish a connection to the load balancer. The security team must reject any client that does not present a trusted certificate at the TLS layer, before the request reaches the backend. Which approach meets this requirement?

Reviewed for accuracy · Report an issueNext question