Multiple Choice
A company stores all personally identifiable information (PII) in an Amazon DynamoDB table named PII in Account A. An application running on Amazon EC2 instances in Account B requires access to the PII table. An administrator in Account A created an IAM role named AccessPII with privileges to access the PII table, and made Account B a trusted entity. Which combination of additional steps should developers take to access the table? (Choose two.)
A) Ask an administrator in Account B to allow the EC2 IAM role permission to assume the AccessPII role.
B) Ask an administrator in Account B to allow the EC2 IAM role permission to assume the AccessPII role with predefined service control policies.
C) Ask an administrator in Account A to allow the EC2 IAM role permission to assume the AccessPII role with predefined service control policies.
D) Include the AssumeRole API in the application code logic to obtain credentials to access the PII table.
E) Include the GetSessionToken API in the application code logic to obtain credentials to access the PII table.
Correct Answer:
Verified
Correct Answer:
Verified
Q129: A developer has created a Node.js web
Q130: An Amazon RDS database instance is used
Q131: A company has an application that logs
Q132: A developer is building a new complex
Q133: A Lambda function is packaged for deployment
Q135: A developer is building an application that
Q136: A company wants to make sure that
Q137: A Developer has built an application running
Q138: A Developer has been asked to make
Q139: A company has a two-tier application running