Question 221:
Your team is working on a new Internet of Things (IoT) application. The IoT devices need to prove their identity and establish encrypted communications channels between each other. You want to create a private Certificate Authority (CA) so that you can create certificates with any subject name and expiration date you want. How would you quickly implement this using the AWS Certificate Manager?
Answer options:
A.Use OpenSSL to generate a key for the private Certificate Authority. Create a certificate signing request and then self-sign the certificate. Import the new private CA to ACM. B.Configure a private Certificate Authority (CA) using AWS Certificate Manager. Create a root CA to establish a new CA hierarchy. C.Use OpenSSL to generate a private key for the new CA and import the key to ACM. In ACM, use AWS CLI create-certificate-authority to generate the private Certificate Authority. D.In Amazon ACM, create a new private key and certificate signing request (CSR) for the private Certificate Authority. Generate new self-signed certificates for the private CA.
