Multiple Choice
A SysOps Administrator is writing an AWS Lambda function in AWS Account A to put objects in an Amazon S3 bucket in AWS Account B. The Lambda function is able to successfully write new objects to the S3 bucket, but IAM users in Account B are unable to delete objects written to the bucket by Account A. Which step will fix this issue?
A) Add s3:DeleteObject permission to the IAM execution role of the AWS Lambda function in Account A. Add s3:DeleteObject permission to the IAM execution role of the AWS Lambda function in Account A.
B) Change the bucket policy of the S3 bucket in Account B to allow s3:DeleteObject permission for Account A. Change the bucket policy of the S3 bucket in Account B to allow permission for Account A.
C) Disable server-side encryption for objects written to the S3 bucket by the Lambda function.
D) Modify the Lambda function to call the S3:PutObjectAcl API operation to specify bucket owner, full control. Modify the Lambda function to call the S3:PutObjectAcl API operation to specify bucket owner, full control.
Correct Answer:
Verified
Correct Answer:
Verified
Q56: A company website hosts patches for software
Q57: A user is configuring a CloudWatch alarm
Q58: You have private video content in S3
Q59: An organization is measuring the latency of
Q60: A user is collecting 1000 records per
Q62: A group in IAM can contain many
Q63: A company's website went down for several
Q64: Could you use IAM to grant access
Q65: A Security and Compliance team is reviewing
Q66: Which of the following statements is true