A company is migrating a monolithic application to a microservices architecture on Amazon EKS. They want to implement a service mesh to handle service-to-service communication, mutual TLS (mTLS) encryption, and advanced traffic routing (like canary deployments). Which THREE AWS services or features can be used to achieve this? (Select THREE)

Answer options:

AWS App Mesh

Amazon EKS

AWS Certificate Manager (ACM) Private CA

AWS Transit Gateway

Amazon API Gateway

AWS Direct Connect

How to approach this question

Identify the AWS service mesh (App Mesh), the compute platform (EKS), and the certificate authority for mTLS (ACM Private CA).

Full Answer

AWS App Mesh Amazon EKS AWS Certificate Manager (ACM) Private CA

AWS App Mesh is a service mesh that standardizes how microservices communicate. It runs on EKS. To enable mutual TLS (mTLS) between services, App Mesh integrates with AWS Certificate Manager (ACM) Private CA to issue and manage the certificates.

Common mistakes

Confusing API Gateway (ingress) with App Mesh (internal service-to-service).

Question 60 All questions Question 62

Practice the full AWS Solutions Architect Professional SAP-C02 Practice Exam 1

75 questions · hints · full answers · grading

More questions from this exam

Q01An enterprise has 50 VPCs across two AWS Regions. They need to establish transitive routing betwe...Hard Q02A company uses AWS Organizations. The security team wants to ensure that no IAM user or role can ...Medium Q03An application requires a relational database with an RPO of 1 second and an RTO of less than 1 m...Hard Q04A company is setting up a new multi-account environment. They want to automate the provisioning o...Medium Q05An organization wants to allocate AWS costs to specific business units. They use AWS Organization...Hard

View all 75 questions →