ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty SCS-C02 All Questions

View all questions & answers for the AWS Certified Security - Specialty SCS-C02 exam
Go to Exam

Exam AWS Certified Security - Specialty SCS-C02 topic 1 question 237 discussion

Exam question from Amazon's AWS Certified Security - Specialty SCS-C02
Question #: 237
Topic #: 1
[All AWS Certified Security - Specialty SCS-C02 Questions]

A developer is receiving AccessDenied errors when the developer invokes API calls to AWS services from a workstation. The developer previously configured environment variables and configuration files on the workstation to use multiple roles with other AWS accounts.

A security engineer needs to help the developer configure authentication. The current credentials must be evaluated without conflicting with other credentials that were previously configured on the workstation.

Where these credentials should be configured to meet this requirement?

  • A. In the local AWS CLI configuration file
  • B. As environment variables on the local workstation
  • C. As variables in the AWS CLI command line options
  • D. In the AWS shared configuration file
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by rhsilva at Nov. 13, 2024, 7:54 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
phmeeeee
3 weeks, 3 days ago
Selected Answer: C
C - export AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY as variables
upvoted 1 times
...
IPLogic
4 months, 4 weeks ago
Selected Answer: C
To configure the current credentials without conflicting with other previously configured credentials on the workstation, the best option is: C. As variables in the AWS CLI command line options This approach ensures that the specific set of credentials needed for the current task can be provided directly in the CLI command itself, thus avoiding any potential conflicts with the environment variables or configuration files that might contain other credentials for different roles or accounts. Configuring credentials this way ensures that each command can be executed with its own specific set of credentials, without affecting the global or shared configurations on the workstation.
upvoted 3 times
IPLogic
4 months, 4 weeks ago
A. In the local AWS CLI configuration file: This is a common place to store credentials, but it can lead to conflicts if multiple roles or accounts are configured. Since the developer already has multiple configurations, adding another set of credentials here could result in the wrong credentials being used, especially if profile management isn't carefully handled. B. As environment variables on the local workstation: Environment variables are a straightforward way to set credentials, but they can also lead to conflicts. If multiple roles or accounts are used, environment variables might override each other, causing similar issues as the CLI configuration file. D. In the AWS shared configuration file: Similar to option A, the shared configuration file is used to manage multiple profiles. However, it could still lead to conflicts if not properly managed, especially when switching between different roles and accounts.
upvoted 1 times
...
...
723993f
5 months, 1 week ago
Selected Answer: C
Credential Precedence (Highest to Lowest): - Command Line Options - Environment Variables - CLI config file - Shared config file using Command Line Options would mean it will limited to until the session is active, next time when these options are not used, it will fall back to environment variables
upvoted 1 times
723993f
5 months, 1 week ago
https://docs.aws.amazon.com/cli/v1/userguide/cli-chap-configure.html
upvoted 1 times
...
...
rhsilva
5 months, 3 weeks ago
Selected Answer: D
To avoid conflicts with previously configured credentials and ensure proper evaluation, the credentials should be configured in the AWS shared configuration file (option D). This file, typically located at ~/.aws/config on Linux and macOS or C:\Users\<username>\.aws\config on Windows, allows you to manage multiple profiles and roles without interfering with environment variables or local configuration files1
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago