ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified SysOps Administrator - Associate All Questions

View all questions & answers for the AWS Certified SysOps Administrator - Associate exam
Go to Exam

Exam AWS Certified SysOps Administrator - Associate topic 1 question 227 discussion

Exam question from Amazon's AWS Certified SysOps Administrator - Associate
Question #: 227
Topic #: 1
[All AWS Certified SysOps Administrator - Associate Questions]

A company updates its security policy to prohibit the public exposure of any data in Amazon S3 buckets in the company's account.

What should a SysOps administrator do to meet this requirement?

  • A. Turn on S3 Block Public Access from the account level.
  • B. Create an Amazon Event Bridge (Amazon CloudWatch Events) rule to enforce that all S3 objects are private.
  • C. Use Amazon Inspector to search for S3 buckets and to automatically reset S3 ACLs if any public S3 buckets are found.
  • D. Use S3 Object Lambda to examine S3 ACLs and to change any public S3 ACLs to private.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Gil80 at Feb. 9, 2023, 11:19 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
xSohox
8 months, 3 weeks ago
Selected Answer: A
https://docs.aws.amazon.com/AmazonS3/latest/userguide/configuring-block-public-access-account.html
upvoted 2 times
...
jipark
8 months, 3 weeks ago
Selected Answer: A
question asks "how to prohibit before exposure" not monitoring after exposure.
upvoted 2 times
...
Vivec
1 year, 2 months ago
Selected Answer: A
S3 Block Public Access is a security feature that can be enabled at the account level to prevent public access to S3 buckets and objects. It provides four settings for blocking public access, which can be applied at the account level, the bucket level, or the object level. By enabling this feature at the account level, all existing and future S3 buckets and objects will be protected against public access. This meets the requirement to prohibit the public exposure of any data in S3 buckets in the company's account.
upvoted 3 times
...
Gil80
1 year, 3 months ago
Selected Answer: A
Based on the 1st paragraph from this link: https://aws.amazon.com/s3/features/block-public-access/ it seems that A is the simplest solution.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago