ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS-SysOps All Questions

View all questions & answers for the AWS-SysOps exam
Go to Exam

Exam AWS-SysOps topic 1 question 800 discussion

Exam question from Amazon's AWS-SysOps
Question #: 800
Topic #: 1
[All AWS-SysOps Questions]

An application is running on an Amazon EC2 instance. A SysOps Administrator is tasked with allowing the application access to an Amazon S3 bucket.
What should be done to ensure optimal security?

  • A. Apply an S3 bucket policy to allow access from all EC2 instances.
  • B. Create an IAM user and create a script to inject the credentials on boot.
  • C. Create and assign an IAM role for Amazon S3 access to the EC2 instance.
  • D. Embed an AWS credentials file for an IAM user inside the Amazon Machine Image (AMI).
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
Reference:
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2.html
by nicat at May 10, 2020, 4:08 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
nicat
Highly Voted 2 years, 9 months ago
C. Create and assign an IAM role for Amazon S3 access to the EC2 instance.
upvoted 7 times
...
albert_kuo
Most Recent 11 months, 2 weeks ago
Selected Answer: C
Option C is the best choice for ensuring optimal security when granting an EC2 instance access to an S3 bucket. By creating an IAM role and attaching it to the EC2 instance, you provide temporary, automatically rotated security credentials to the application running on the EC2 instance.
upvoted 1 times
...
aidenpearce01
2 years, 3 months ago
I dont see C it's correct , it's must be assign role for EC2 to access S3 not vice versa
upvoted 1 times
leyty082
1 year, 5 months ago
I think it means assign the role to EC2 to have permission to access S3, depend on how we read.
upvoted 1 times
...
...
RicardoD
2 years, 8 months ago
C is the answer
upvoted 1 times
...
Khandakar420
2 years, 8 months ago
None of them are correct. Q is asking application to access S3, but option C is giving S3 access to EC2 instance which is opposite.
upvoted 2 times
...
Chirantan
2 years, 8 months ago
C you can and should use an IAM role to manage temporary credentials for applications that run on an EC2 instance.
upvoted 1 times
...
abhishek_m_86
2 years, 8 months ago
C. Create and assign an IAM role for Amazon S3 access to the EC2 instance. : Seems correct
upvoted 1 times
...
jackdryan
2 years, 8 months ago
I'll go with C
upvoted 1 times
...
mrbreeze
2 years, 8 months ago
C Create a role and assign
upvoted 1 times
...
jmad
2 years, 8 months ago
None are right - Answer C is reversed. The EC2 instance should get the role to access S3.
upvoted 4 times
ImranR
2 years, 8 months ago
To the EC2...It is right statement...C is correct...
upvoted 1 times
...
MrDEVOPS
2 years, 8 months ago
pls read the option again.
upvoted 2 times
...
...
professor
2 years, 9 months ago
C: Create a Role
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel