Topic 1 Question 188
A company is storing data in Amazon S3 Glacier. A security engineer implemented a new vault lock policy for 10 TB of data and called the initiate-vault-lock operation 12 hours ago. The audit team identified a typo in the policy that is allowing unintended access to the vault.
What is the MOST cost-effective way to correct this error?
Call the abort-vault-lock operation. Update the policy. Call the initiate-vault-lock operation again.
Copy the vault data to a new S3 bucket. Delete the vault Create a new vault with the data.
Update the policy to keep the vault lock in place.
Update the policy. Call the initiate-vault-lock operation again to apply the new policy.
ユーザの投票
コメント(3)
The answer is A
👍 1Bad_Mat2024/10/21- 正解だと思う選択肢: A
The most cost-effective way to correct the error is:
A. Call the abort-vault-lock operation. Update the policy. Call the initiate-vault-lock operation again.
Since the vault lock policy is still in the “InProgress” state, you can abort the lock operation, correct the typo in the policy, and then initiate the vault lock operation again. This approach avoids the need to move large amounts of data or create new vaults, making it the most efficient solution.
👍 1IPLogic2024/12/03 - 正解だと思う選択肢: A
A. Call the abort-vault-lock operation. Update the policy. Call the initiate-vault-lock operation again. ✅ Why? The S3 Glacier Vault Lock feature has a lock-in period before the policy becomes immutable. The "initiate-vault-lock" operation starts a 24-hour window where the policy can still be modified or aborted. Since the vault lock was initiated only 12 hours ago, you can still abort it, correct the policy, and restart the process without extra cost.
👍 1Pat95952025/01/31
シャッフルモード