Topic 1 Question 6
A retail company needs to provide a series of data files to another company, which is its business partner. These files are saved in an Amazon S3 bucket under Account A, which belongs to the retail company. The business partner company wants one of its IAM users, User_DataProcessor, to access the files from its own AWS account (Account B). Which combination of steps must the companies take so that User_DataProcessor can access the S3 bucket successfully?
Turn on the cross-origin resource sharing (CORS) feature for the S3 bucket in Account A.
In Account A, set the S3 bucket policy to the following:
In Account A, set the S3 bucket policy to the following:
In Account B, set the permissions of User_DataProcessor to the following:
In Account B, set the permissions of User_DataProcessor to the following:
ユーザの投票
コメント(17)
- 👍 15robertohyena2022/12/11
C & D
To allow User_DataProcessor to access the S3 bucket from Account B, the following steps need to be taken:
In Account A, set the S3 bucket policy to allow access to the bucket from the IAM user in Account B. This is done by adding a statement to the bucket policy that allows the IAM user in Account B to perform the necessary actions (GetObject and ListBucket) on the bucket and its contents. In Account B, create an IAM policy that allows the IAM user (User_DataProcessor) to perform the necessary actions (GetObject and ListBucket) on the S3 bucket and its contents. The policy should reference the ARN of the S3 bucket and the actions that the user is allowed to perform.Note: turning on the cross-origin resource sharing (CORS) feature for the S3 bucket in Account A is not necessary for this scenario as it is typically used for allowing web browsers to access resources from different domains.
👍 6higashikumi2023/03/02- 正解だと思う選択肢: D
C & D are the correct answers ✅
👍 2dev112233xx2023/03/04
シャッフルモード