ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty All Questions

View all questions & answers for the AWS Certified Security - Specialty exam
Go to Exam

Exam AWS Certified Security - Specialty topic 1 question 89 discussion

Exam question from Amazon's AWS Certified Security - Specialty
Question #: 89
Topic #: 1
[All AWS Certified Security - Specialty Questions]

An AWS account includes two S3 buckets: bucket1 and bucket2. The bucket2 does not have a policy defined, but bucket1 has the following bucket policy:

In addition, the same account has an IAM User named `alice`, with the following IAM policy.

Which buckets can user `alice` access?

  • A. Bucket1 only
  • B. Bucket2 only
  • C. Both bucket1 and bucket2
  • D. Neither bucket1 nor bucket2
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by jackn at Dec. 28, 2021, 8 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
CarisB
Highly Voted 3 years, 4 months ago
C https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html When an IAM entity (user or role) requests access to a resource within the same account, AWS evaluates all the permissions granted by the identity-based and resource-based policies. The resulting permissions are the total permissions of the two types. If an action is allowed by an identity-based policy, a resource-based policy, or both, then AWS allows the action. An explicit deny in either of these policies overrides the allow.
upvoted 21 times
...
G4Exams
Most Recent 2 years, 1 month ago
Selected Answer: C
It will allow both so the answer is C.
upvoted 1 times
...
sapien45
2 years, 8 months ago
Selected Answer: C
https://docs.aws.amazon.com/IAM/latest/UserGuide/images/permissions_policies_effective.png
upvoted 1 times
...
dcasabona
2 years, 9 months ago
Selected Answer: C
Both buckets... One by the bucket policy and another by the IAM policy.
upvoted 1 times
...
roger8978
3 years, 4 months ago
C......
upvoted 1 times
...
argol
3 years, 4 months ago
Both bucket1 and bucket2
upvoted 1 times
...
jackn
3 years, 4 months ago
both, C
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel