AWS Certified Solutions Architect – Associate (SAA-C03) — Question 262

A solutions architect needs to design a new microservice for a company’s application. Clients must be able to call an HTTPS endpoint to reach the microservice. The microservice also must use AWS Identity and Access Management (IAM) to authenticate calls. The solutions architect will write the logic for this microservice by using a single AWS Lambda function that is written in Go 1.x.

Which solution will deploy the function in the MOST operationally efficient way?

Answer options

• A. Create an Amazon API Gateway REST API. Configure the method to use the Lambda function. Enable IAM authentication on the API.
• B. Create a Lambda function URL for the function. Specify AWS_IAM as the authentication type.
• C. Create an Amazon CloudFront distribution. Deploy the function to Lambda@Edge. Integrate IAM authentication logic into the Lambda@Edge function.
• D. Create an Amazon CloudFront distribution. Deploy the function to CloudFront Functions. Specify AWS_IAM as the authentication type.

Correct answer: A

Explanation

The correct answer is A because creating an Amazon API Gateway REST API allows for seamless integration with AWS Lambda while enabling IAM authentication, making it operationally efficient. Option B, while valid, does not leverage the full capabilities of API Gateway, and options C and D involve additional complexity and latency with CloudFront, which is not necessary for this use case.