ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Professional All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional exam
Go to Exam

Exam AWS Certified Solutions Architect - Professional topic 1 question 81 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional
Question #: 81
Topic #: 1
[All AWS Certified Solutions Architect - Professional Questions]

Your fortune 500 company has under taken a TCO analysis evaluating the use of Amazon S3 versus acquiring more hardware The outcome was that ail employees would be granted access to use Amazon S3 for storage of their personal documents.
Which of the following will you need to consider so you can set up a solution that incorporates single sign-on from your corporate AD or LDAP directory and restricts access for each user to a designated user folder in a bucket? (Choose three.)

  • A. Setting up a federation proxy or identity provider
  • B. Using AWS Security Token Service to generate temporary tokens
  • C. Tagging each folder in the bucket
  • D. Configuring IAM role
  • E. Setting up a matching IAM user for every user in your corporate directory that needs access to a folder in the bucket
Show Suggested Answer Hide Answer
Suggested Answer: ABD 🗳️
by 01037 at May 25, 2021, 4:43 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
01037
Highly Voted 3 years, 7 months ago
ABDですね
upvoted 7 times
...
amministrazione
Most Recent 8 months, 3 weeks ago
A. Setting up a federation proxy or identity provider B. Using AWS Security Token Service to generate temporary tokens D. Configuring IAM role
upvoted 1 times
...
SkyZeroZx
1 year, 10 months ago
Selected Answer: ABD
C. Tagging each folder in the bucket , is incorrect not help with the requirement E . More overhead and error human realized Correct is ABD
upvoted 1 times
...
TigerInTheCloud
2 years, 4 months ago
Selected Answer: ABD
A and B for federation https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html D for S3 folder https://aws.amazon.com/blogs/security/writing-iam-policies-grant-access-to-user-specific-folders-in-an-amazon-s3-bucket/ C: S3 folder tagging? folder just S3 prefix. Just checked the prefix or folder cannot be tagged. When you select a folder, the Edit tag in the Action dropdown is grayed out. S3 objects can be tagged and used for access control. E: everyone knows it is not right.
upvoted 1 times
...
jyrajan69
2 years, 10 months ago
If you with ABD, how do address this , limits access for each user to a defined user folder in a bucket?, because it using AD, then A for sure, but between B and D, when you create a Role is does call up the STS Service, so I will go with D, and that will have every user access his folder, so for me I will go with ACD
upvoted 1 times
...
jj22222
3 years, 1 month ago
Selected Answer: ABD
ABD looks right
upvoted 2 times
...
Bhagirathi
3 years, 6 months ago
ABD is correct
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago