AWS Certified Solutions Architect – Professional — Question 996

A company is planning to set up a REST API application on AWS. The application team wants to set up a new identity store on AWS. The IT team does not want to maintain any infrastructure or servers for this deployment.
What is the MOST operationally efficient solution that meets these requirements?

Answer options

• A. Deploy the application as AWS Lambda functions. Set up Amazon API Gateway REST API endpoints for the application. Create a Lambda function, and configure a Lambda authorizer.
• B. Deploy the application in AWS AppSync, and configure AWS Lambda resolvers. Set up an Amazon Cognito user pool, and configure AWS AppSync to use the user pool for authorization.
• C. Deploy the application as AWS Lambda functions. Set up Amazon API Gateway REST API endpoints for the application. Set up an Amazon Cognito user pool, and configure an Amazon Cognito authorizer.
• D. Deploy the application in Amazon Elastic Kubernetes Service (Amazon EKS) clusters. Set up an Application Load Balancer for the EKS pods. Set up an Amazon Cognito user pool and service pod for authentication.

Correct answer: C

Explanation

Option C is the most operationally efficient solution because AWS Lambda, Amazon API Gateway, and Amazon Cognito are fully serverless services that require no infrastructure or server maintenance. Using a built-in Amazon Cognito authorizer eliminates the operational overhead of writing and maintaining custom code, which would be required for the Lambda authorizer in Option A. Option B utilizes AWS AppSync, which is optimized for GraphQL rather than REST APIs, and Option D introduces Amazon EKS clusters, which require significant infrastructure management.