Examtopics

AWS Certified Solutions Architect - Associate

288
290

Topic 1 Question 289
A company has an AWS Lambda function that needs read access to an Amazon S3 bucket that is located in the same AWS account.

Which solution will meet these requirements in the MOST secure manner?
- Apply an S3 bucket policy that grants read access to the S3 bucket.
- Apply an IAM role to the Lambda function. Apply an IAM policy to the role to grant read access to the S3 bucket.
- Embed an access key and a secret key in the Lambda function’s code to grant the required IAM permissions for read access to the S3 bucket.
- Apply an IAM role to the Lambda function. Apply an IAM policy to the role to grant read access to all S3 buckets in the account.
ユーザの投票
コメント(8)
- 正解だと思う選択肢: B
  This is the most secure and recommended way to provide an AWS Lambda function with access to an S3 bucket. It involves creating an IAM role that the Lambda function assumes, and attaching an IAM policy to the role that grants the necessary permissions to read from the S3 bucket.
  
  👍 3
  kpato872023/02/18
- 正解だと思う選択肢: B
  B. Least of privilege
  
  👍 2
  Joan111edu2023/02/17
- 正解だと思う選択肢: B
  https://docs.aws.amazon.com/lambda/latest/dg/lambda-permissions.html
  
  👍 1
  Joxtat2023/02/21
シャッフルモード

288
290