Multiple Choice
An Amazon EC2 instance is running an application that uses Amazon Simple Queue Service (Amazon SQS) queues. A SysOps administrator must ensure that the application can read, write, and delete messages from the SQS queues. Which solution will meet these requirements in the MOST secure manner?
A) Create an IAM user with an IAM policy that allows the sqs:SendMessage permission, the sqs:ReceiveMessage permission, and the sqs:DeleteMessage permission to the appropriate queues. Embed the IAM user's credentials in the application's configuration.
B) Create an IAM user with an IAM policy that allows the sqs:SendMessage permission, the sqs:ReceiveMessage permission, and the sqs:DeleteMessage permission to the appropriate queues. Export the IAM user's access key and secret access key as environment variables on the EC2 instance.
C) Create and associate an IAM role that allows EC2 instances to call AWS services. Attach an IAM policy to the role that allows sqs:* permissions to the appropriate queues.
D) Create and associate an IAM role that allows EC2 instances to call AWS services. Attach an IAM policy to the role that allows the sqs:SendMessage permission, the sqs:ReceiveMessage permission, and the sqs:DeleteMessage permission to the appropriate queues.
Correct Answer:
Verified
Correct Answer:
Verified
Q44: A company has multiple Amazon EC2 instances
Q45: A company is using an Amazon Aurora
Q46: A SysOps administrator is deploying a test
Q47: A company is running a website on
Q48: A company hosts a web application on
Q49: A company has deployed a web application
Q51: A company needs to create a daily
Q52: An organization created an Amazon Elastic File
Q53: A company has an Amazon RDS DB
Q54: A SysOps Administrator runs a web application