Topic 1 Question 91
A company has a data lake on AWS. The data lake ingests sources of data from business units. The company uses Amazon Athena for queries. The storage layer is Amazon S3 with an AWS Glue Data Catalog as a metadata repository.
The company wants to make the data available to data scientists and business analysts. However, the company first needs to manage fine-grained, column-level data access for Athena based on the user roles and responsibilities.
Which solution will meet these requirements?
Set up AWS Lake Formation. Define security policy-based rules for the users and applications by IAM role in Lake Formation.
Define an IAM resource-based policy for AWS Glue tables. Attach the same policy to IAM user groups.
Define an IAM identity-based policy for AWS Glue tables. Attach the same policy to IAM roles. Associate the IAM roles with IAM groups that contain the users.
Create a resource share in AWS Resource Access Manager (AWS RAM) to grant access to IAM users.
ユーザの投票
コメント(4)
- 正解だと思う選択肢: A
Correct Solution: A. Set up AWS Lake Formation. Define security policy-based rules for the users and applications by IAM role in Lake Formation.
Explanation: AWS Lake Formation: This service simplifies and automates the process of securing and managing data lakes. It allows you to define fine-grained access control policies at the database, table, and column levels. Security Policy-Based Rules: Lake Formation allows you to create policies that specify which users or roles have access to specific data, including column-level access controls. This makes it easier to manage access based on roles and responsibilities.
👍 6Ja132024/07/07 - 正解だと思う選択肢: A
Lake Formation supports fine-grained access control, including column-level permissions.
👍 4tgv2024/06/15 - 正解だと思う選択肢: A
A - Lake formation
👍 1HunkyBunky2024/06/20
シャッフルモード