Multiple Choice
A SysOps Administrator is reviewing AWS Trusted Advisor warnings and encounters a warning for an S3 bucket policy that has open access permissions. While discussing the issue the bucket owner, the Administrator realizes the S3 bucket is an origin for an Amazon CloudFront web distribution. Which action should the Administrator take to ensure that users access objects in Amazon S3 by using only CloudFront URLs?
A) Encrypt the S3 bucket content with Server-Side Encryption with Amazon S3-Managed Keys (SSE-S3)
B) Create an origin access identity and grant it permissions to read objects in the S3 bucket
C) Assign an IAM user to the CoudFront distribution and whitelist the IAM user in the S3 bucket policy
D) Assign an IAM role to the CloudFront distribution and whitelist the IAM role in the S3 bucket policy
Correct Answer:
Verified
Correct Answer:
Verified
Q207: Network ACLs in a VPC operate at
Q208: In the context of sending metrics to
Q209: A SysOps Administrator needs to create a
Q210: A SysOps Administrator is deploying an Amazon
Q211: In which screen does a user select
Q213: A user has setup a CloudWatch alarm
Q214: The chief financial officer (CFO) of an
Q215: What does Amazon SWF stand for?<br>A) Simple
Q216: A SysOps administrator must run a script
Q217: A user is trying to understand the