Multiple Choice
You need to grant a vendor access to your AWS account. They need to be able to read protected messages in a private S3 bucket at their leisure. They also use AWS. What is the best way to accomplish this?
A) Create an IAM User with API Access Keys. Grant the User permissions to access the bucket. Give the vendor the AWS Access Key ID and AWS Secret Access Key for the User.
B) Create an EC2 Instance Profile on your account. Grant the associated IAM role full access to the bucket. Start an EC2 instance with this Profile and give SSH access to the instance to the vendor.
C) Create a cross-account IAM Role with permission to access the bucket, and grant permission to use the Role to the vendor AWS account.
D) Generate a signed S3 PUT URL and a signed S3 PUT URL, both with wildcard values and 2 year durations. Pass the URLs to the vendor.
Correct Answer:
Verified
Correct Answer:
Verified
Q488: An IT department manages a portfolio with
Q489: A company has developed a Node.js web
Q490: When thinking of AWS Elastic Beanstalk, which
Q491: You are hosting multiple environments in multiple
Q492: A DevOps Engineer is launching a new
Q494: Your CTO has asked you to make
Q495: A company needs to introduce automatic DNS
Q496: You work for an insurance company and
Q497: You are creating a new API for
Q498: Some of your EC2 instances are configured