Which of the below mentioned options helps identify the matching cipher at the client side to the ELB cipher list when client is requesting ELB DNS over SSL?

A user has configured ELB with SSL using a security policy for secure negotiation between the
client and load balancer. The ELB security policy supports various ciphers. Which of the below
mentioned options helps identify the matching cipher at the client side to the ELB cipher list when
client is requesting ELB DNS over SSL?

A user has configured ELB with SSL using a security policy for secure negotiation between the
client and load balancer. The ELB security policy supports various ciphers. Which of the below
mentioned options helps identify the matching cipher at the client side to the ELB cipher list when
client is requesting ELB DNS over SSL?

A.
Cipher Protocol

B.
Client Configuration Preference

C.
Server Order Preference

D.
Load Balancer Preference

Explanation:
Elastic Load Balancing uses a Secure Socket Layer (SSL. negotiation configuration which is
known as a
Security Policy. It is used to negotiate the SSL connections between a client and the load
balancer. When
client is requesting ELB DNS over SSL and if the load balancer is configured to support the Server
Order
Preference, then the load balancer gets to select the first cipher in its list that matches any one of
the ciphers in the client’s list. Server Order Preference ensures that the load balancer determines
which cipher is used for the SSL connection.

Show Hint

Leave a Reply 2

Your email address will not be published. Required fields are marked *