Prev Question
Next Question

A user is trying to setup a security policy for ELB. The user wants ELB to meet the cipher
supported by the client by configuring the server order preference in ELB security policy. Which of
the below mentioned
preconfigured policies supports this feature?

A.
ELBSecurity Policy-2014-01

B.
ELBSecurity Policy-2011-08

C.
ELBDefault Negotiation Policy

D.
ELBSample- OpenSSLDefault Cipher Policy

Explanation:
Elastic Load Balancing uses a Secure Socket Layer (SSL. negotiation configuration which is
known as a
Security Policy. It is used to negotiate the SSL connections between a client and the load
balancer. If the load balancer is configured to support the Server Order Preference, then the load
balancer gets to select the first cipher in its list that matches any one of the ciphers in the client’s
list. When the user verifies the preconfigured policies supported by ELB, the policy “ELBSecurity
Policy-2014-01” supports server order preference.

Prev Question
Next Question

Leave a Reply

Your email address will not be published. Required fields are marked *