AWS Certified Developer Associate DVA-C02 Practice Question
To comply with an inter-company collaboration, your team is required to configure a cloud storage resource enabling another organization to have readonly access to specific files. Your task is to determine how to accomplish this without granting unnecessary privileges or altering user management in the other organization. What is the most effective method to establish this level of access control?
Provision individual user accounts for the external entity within your identity management system, assigning full privileges over the storage resource.
Deploy a series of temporary URLs for each file, allowing indefinite access to the resources without restriction.
Update the storage resource's ACL to give ownership permissions to the external entity’s account identifier.
Create a bucket policy that allows readonly access to the specified files for the external entity's account identifier.