Which of the following is not correct about cloudfront

Which of the following is not correct about CloudFront? a) CloudFront cannot serve content from a non AWS origin server b) CloudFront can stream content using RTMP(real time messaging protocol) c) CloudFront can serve both compressed and uncompressed files d) CloudFront can serve both static and dynamic content

Topics • • • Restrictions on all edge functions The following restrictions apply to all edge functions, both CloudFront Functions and Lambda@Edge. AWS account ownership To associate an edge function with a CloudFront distribution, the function and distribution must be owned by the same AWS account. Combining CloudFront Functions with Lambda@Edge For a given cache behavior, the following restrictions apply: • Each event type (viewer request, origin request, origin response, and viewer response) can have only one edge function association. • You cannot combine CloudFront Functions and Lambda@Edge in viewer events (viewer request and viewer response). All other combinations of edge functions are allowed. The following table explains the allowed combinations. CloudFront Functions Viewer request Viewer response Lambda@Edge Viewer request Not allowed Not allowed Origin request Allowed Allowed Origin response Allowed Allowed Viewer response Not allowed Not allowed HTTP status codes CloudFront does not invoke edge functions for viewer response events when the origin returns HTTP status code 400 or higher. Lambda@Edge functions for origin response events are invoked for all origin responses, including when the origin returns HTTP status code 400 or higher. For more information, see HTTP headers Certain HTTP headers are disallowed, which means they're not exposed to edge functions and functions can't add them. Other headers are read-only, which means functions can read them but can'...

CE: The most logical responses based on options. D is no longer valid as of 2020: https://aws.amazon.com/about-aws/whats-new/2020/10/cloudfront-iam-signed-url/ 'Amazon CloudFront announces that you can now manage public keys used for signed URLs and signed cookies through Amazon Identity and Access Management (IAM) based user permission, without requiring the AWS root account.' The best an admin with full administrative access can do is create another admin without full administrative access: https://docs.aws.amazon.com/medialive/latest/ug/setting-up-restricted-admin.html , so it follows that in order to create an admin with full administrative access you need a root user. So therefore the answer must be E and not D. I think we are all in agreement about C. Few mentioned D as answer, but we can create CloudFront key pairs with two ways. Hence not depending only with root user credentials, PFR below You can create a CloudFront key pair in the following ways: Create a key pair in the AWS Management Console and download the private key. See the following procedure. Create an RSA key pair by using an application such as OpenSSL, and then upload the public key to the AWS Management Console. For more information about creating an RSA key pair, see Create a key pair for a trusted key group (recommended). C and D https://docs.aws.amazon.com/awssupport/latest/user/changing-support-plans.html Tried using full admin access iam user, needs to log in your root account https://docs.aws....

Topics • • • • • Accelerate static website content delivery CloudFront can speed up the delivery of your static content (for example, images, style sheets, JavaScript, and so on) to viewers across the globe. By using CloudFront, you can take advantage of the AWS backbone network and CloudFront edge servers to give your viewers a fast, safe, and reliable experience when they visit your website. A simple approach for storing and delivering static content is to use an Amazon S3 bucket. Using S3 together with CloudFront has a number of advantages, including the option to use For more information about using S3 together with CloudFront, including a AWS CloudFormation template to help you get started quickly, see Amazon S3 + Amazon CloudFront: A Match Made in the Cloud . Serve video on demand or live streaming video CloudFront offers several options for streaming your media to global viewers—both pre-recorded files and live events. • For video on demand (VOD) streaming, you can use CloudFront to stream in common formats such as MPEG DASH, Apple HLS, Microsoft Smooth Streaming, and CMAF, to any device. • For broadcasting a live stream, you can cache media fragments at the edge, so that multiple requests for the manifest file that delivers the fragments in the right order can be combined, to reduce the load on your origin server. For more information about how to deliver streaming content with CloudFront, see Encrypt specific fields throughout system processing When you configure ...

• All Amazon S3 buckets in all AWS Regions, including opt-in Regions launched after December 2022 • Amazon S3 • Dynamic requests ( PUT and DELETE) to Amazon S3 OAI doesn't work for the scenarios in the preceding list, or it requires extra workarounds in those scenarios. The following topics describe how to use OAC with an Amazon S3 origin. For information about how to migrate from OAI to OAC, see Topics • • • Prerequisites Before you create and set up origin access control (OAC), you must have a CloudFront distribution with an Amazon S3 bucket origin. This origin must be a regular S3 bucket, not a bucket configured as a Giving the origin access control permission to access the S3 bucket Before you create an origin access control (OAC) or set it up in a CloudFront distribution, make sure the OAC has permission to access the S3 bucket origin. Do this after creating a CloudFront distribution, but before adding the OAC to the S3 origin in the distribution configuration. To give the OAC permission to access the S3 bucket, use an S3 cloudfront.amazonaws.com) to access the bucket. Use a Condition element in the policy to allow CloudFront to access the bucket only when the request is on behalf of the CloudFront distribution that contains the S3 origin. For information about adding or modifying a bucket policy, see Amazon S3 User Guide. The following are examples of S3 bucket policies that allow a CloudFront OAC to access an S3 origin. SSE-KMS If the objects in the S3 bucket origi...

• Menu Toggle • Amazon (AWS) Menu Toggle • AWS Certified Cloud Practitioner • AWS Certified Solutions Architect Associate • AWS Certified Developer Associate • AWS Certified SysOps Administrator Associate • AWS Certified Solutions Architect Professional • AWS Certified DevOps Engineer Professional • AWS Certified Big Data – Speciality • AWS Certified Advanced Networking – Speciality • AWS Certified Security – Specialty • AWS Certified Machine Learning – Specialty • AWS Certified Database – Specialty • AWS Certified Data Analytics – Specialty • Database Migration to AWS Master Class • AWS Lambda and API Gateway Training Course • AWS DynamoDB Deep Dive – Beginner to Intermediate • AWS CI/CD Pipeline – Master Class • Terraform for AWS • Fullstack Serverless Application on AWS • Deploying Amazon Managed Containers Using Amazon EKS • Cost Optimization in AWS • AWS Monitoring & Auditing • Building a Data Lake on AWS • Automating AWS with Python & Boto3 • AWS IoT Core Device Provisioning • Amazon Comprehend deep dive with Case Study on Sentiment Analysis • Text Extraction using AWS Lambda, S3 and Textract • Microsoft Azure Menu Toggle • Microsoft Azure (AZ-900) • Microsoft Azure (AZ-104) • Microsoft Azure (AZ-204) • Microsoft Azure (AZ-400) • Microsoft Azure (AZ-500) • Microsoft Azure (DP-200) • Microsoft Azure (DP-201) • Microsoft Azure (AI-100) • Microsoft Azure (AZ-303) • Microsoft Azure (AZ-304) • Microsoft Azure (AZ-120) • Microsoft Azure (DP-900) • Microsoft Azure (DP-100) ...