The majority of your Infrastructure is on premises and you have a small footprint on AWS. Your company has decided to
roll out a new application that is heavily dependent on low latency connectivity to LOAP for authentication. Your security
policy requires minimal changes to the company’s existing application user management processes. What option would
you implement to successfully launch this application?

A.
Create a second, independent LOAP server in AWS for your application to use for authentication

B.
Establish a VPN connection so your applications can authenticate against your existing on-premises LDAP servers

C.
Establish a VPN connection between your data center and AWS create a LDAP replica on AWS and configure your application to use
the LDAP replica for authentication

D.
Create a second LDAP domain on AWS establish a VPN connection to establish a trust relationship between your new and existing
domains and use the new domain for authentication

Explanation:
Create read replica(RODC) of main LDAP server so that LDAP read replica or RODC can authenticate with application
locally. Creating new domain and trust relationship would require lot of work and changes in exiting LDAP configuration
so D cannot be answer here.