CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free AWS Certified Developer Associate DVA-C02 Practice Question

An application deployed on AWS requires the ability to perform read operations on objects within a specific Amazon S3 bucket and write logs to a different S3 bucket. Which IAM policy statement adheres most closely to the principle of least privilege?

  • Allow 's3:*' on the ARN of both the input and output buckets.

  • Allow 's3:GetObject' on all resources using a wildcard (*) and 's3:PutObject' on the ARN of the output bucket.

  • Allow 's3:GetObject' on the ARN of the input bucket and 's3:PutObject' on the ARN of the output bucket.

  • Allow 's3:GetObject' on the ARN of the input bucket and 's3:PutObject' on any resource using a wildcard (*).

This question's topic:
AWS Certified Developer Associate DVA-C02 / 
Security
Your Score:
Security
Development with AWS Services
Deployment
Troubleshooting and Optimization