AWS Certified Solutions Architect – Associate (SAA-C03) — Question 475

A company that uses AWS is building an application to transfer data to a product manufacturer. The company has its own identity provider (IdP). The company wants the IdP to authenticate application users while the users use the application to transfer data. The company must use Applicability Statement 2 (AS2) protocol.

Which solution will meet these requirements?

Answer options

• A. Use AWS DataSync to transfer the data. Create an AWS Lambda function for IdP authentication.
• B. Use Amazon AppFlow flows to transfer the data. Create an Amazon Elastic Container Service (Amazon ECS) task for IdP authentication.
• C. Use AWS Transfer Family to transfer the data. Create an AWS Lambda function for IdP authentication.
• D. Use AWS Storage Gateway to transfer the data. Create an Amazon Cognito identity pool for IdP authentication.

Correct answer: C

Explanation

AWS Transfer Family natively supports the Applicability Statement 2 (AS2) protocol for secure B2B file transfers and can integrate with custom identity providers (IdP) using an AWS Lambda function for authentication. Other services like AWS DataSync, Amazon AppFlow, and AWS Storage Gateway do not natively support AS2 endpoints for user-facing file transfers. Therefore, combining AWS Transfer Family with a Lambda function for IdP integration is the correct solution.