Multiple Choice
A Development team uses AWS CodeCommit for source code control. Developers apply their changes to various feature branches and create pull requests to move those changes to the master branch when they are ready for production. A direct push to the master branch should not be allowed. The team applied the AWS managed policy AWSCodeCommitPowerUser to the Developers' IAM Rote, but now members are able to push to the master branch directly on every repository in the AWS account. What actions should be taken to restrict this?
A) Create an additional policy to include a deny rule for the codecommit:GitPush action, and include a restriction for the specific repositories in the resource statement with a condition for the master reference. Create an additional policy to include a deny rule for the codecommit:GitPush action, and include a restriction for the specific repositories in the resource statement with a condition for the master reference.
B) Remove the IAM policy and add an AWSCodeCommitReadOnly policy. Add an allow rule for the codecommit:GitPush action for the specific repositories in the resource statement with a condition for the master reference. Remove the IAM policy and add an AWSCodeCommitReadOnly policy. Add an allow rule for the action for the specific repositories in the resource statement with a condition for the master reference.
C) Modify the IAM policy and include a deny rule for the codecommit:GitPush action for the specific repositories in the resource statement with a condition for the master reference. Modify the IAM policy and include a deny rule for the
D) Create an additional policy to include an allow rule for the codecommit:GitPush action and include a restriction for the specific repositories in the resource statement with a condition for the feature branches reference. Create an additional policy to include an allow rule for the action and include a restriction for the specific repositories in the resource statement with a condition for the feature branches reference.
Correct Answer:
Verified
Correct Answer:
Verified
Q47: A web application for healthcare services runs
Q48: A defect was discovered in production and
Q49: The Security team depends on AWS CloudTrail
Q50: A DevOps Engineer manages an application that
Q51: Your application Amazon Elastic Compute Cloud (EC2)
Q53: You have an ASP.NET web application running
Q54: A company is implementing AWS CodePipeline to
Q55: A company manages an application that stores
Q56: You have an application running on multiple
Q57: A DevOps Engineer discovered a sudden spike