ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS-SysOps All Questions

View all questions & answers for the AWS-SysOps exam
Go to Exam

Exam AWS-SysOps topic 1 question 295 discussion

Exam question from Amazon's AWS-SysOps
Question #: 295
Topic #: 1
[All AWS-SysOps Questions]

[1]
policy define?

  • A. It will make all the objects as well as the bucket public
  • B. It will throw an error for the wrong action and does not allow to save the policy [1] [1]
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
A sysadmin can grant permission to the S3 objects or the buckets to any user or make objects public using the bucket policy and user policy. Both use the JSON- based access policy language.
Generally, if user is defining the ACL on the bucket, the objects in the bucket do not inherit it and vice a versa. The bucket policy can be defined at the bucket level which allows the objects as well as the bucket to be public with a single policy applied to that bucket. In the below policy the action says "S3:ListBucket" for effect Allow and when there is no bucket name mentioned as a part of the resource, it will throw an error and not save the policy.
by karmaah at Dec. 22, 2019, 3:23 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
sen12
Highly Voted 2 years, 7 months ago
The answer is B. It will throw an error, since you cant define object level policies in S3 bucket.
upvoted 5 times
...
dexdinh91
Most Recent 4 months, 4 weeks ago
None of the answer are right S3 bucket policies and IAM policies define object-level permissions by providing those objects in the Resource element in your policy statements. The statement will apply to those objects in the bucket https://aws.amazon.com/blogs/security/iam-policies-and-bucket-policies-and-acls-oh-my-controlling-access-to-s3-resources/#:~:text=S3%20bucket%20policies%20and%20IAM,those%20objects%20in%20the%20bucket.
upvoted 1 times
...
TroyMcLure
2 years, 5 months ago
Correct Answer: B
upvoted 1 times
...
nafazoline
2 years, 5 months ago
B. It will throw an error for the wrong action and does not allow to save the policy, for the same reason as the previous question
upvoted 1 times
...
abhishek_m_86
2 years, 6 months ago
B. It will throw an error for the wrong action and does not allow to save the policy [1] [1]
upvoted 1 times
...
jackdryan
2 years, 6 months ago
I'll go with B
upvoted 1 times
...
MFDOOM
2 years, 6 months ago
B. It will throw an error for the wrong action and does not allow to save the policy [1] [1]
upvoted 2 times
...
inf
2 years, 7 months ago
B. Because there is no closing double quote in the resource statement :)
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago