AWS Certified SysOps Administrator – Associate (legacy) — Question 550
A company has a web application that is used across all company divisions. Each application request contains a header that includes the name of the division making the request. The SysOps Administrator wants to identify and count the requests from each division.
Which condition should be added to the web ACL of the AWS WAF to accomplish this?
Answer options
- A. Cross-site scripting
- B. Geo match
- C. IP match
- D. String match
Correct answer: D
Explanation
A string match condition in AWS WAF allows the service to search for specific strings, such as department names, within incoming HTTP headers to identify and count requests. Other options like IP match and Geo match filter traffic based on source IP addresses or geographic locations, which do not correspond to application header values. Cross-site scripting (XSS) match conditions are designed to detect malicious scripts in requests rather than inspect header values for organizational tracking.