exam questions

Exam AWS Certified Security - Specialty SCS-C02 All Questions

View all questions & answers for the AWS Certified Security - Specialty SCS-C02 exam

Exam AWS Certified Security - Specialty SCS-C02 topic 1 question 22 discussion

A security engineer creates an Amazon S3 bucket policy that denies access to all users. A few days later, the security engineer adds an additional statement to the bucket policy to allow read-only access to one other employee. Even after updating the policy, the employee sill receives an access denied message.
What is the likely cause of this access denial?

  • A. The ACL in the bucket needs to be updated.
  • B. The IAM policy does not allow the user to access the bucket.
  • C. It takes a few minutes for a bucket policy to take effect.
  • D. The allow permission is being overridden by the deny.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
navid1365
6 months, 4 weeks ago
Selected Answer: D
Explicit deny statements cannot be overridden by allow statements
upvoted 2 times
...
trashbox
11 months, 3 weeks ago
Exam on 2023-12-18
upvoted 1 times
...
[Removed]
1 year, 1 month ago
Selected Answer: D
"An explicit deny in any policy overrides any allows." https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html#policy-eval-denyallow
upvoted 4 times
...
lalee2
1 year, 1 month ago
Selected Answer: D
D is my answer
upvoted 1 times
...
100fold
1 year, 1 month ago
Selected Answer: D
Agree answer D
upvoted 2 times
...
aragon_saa
1 year, 2 months ago
https://www.examtopics.com/discussions/amazon/view/30027-exam-aws-certified-security-specialty-topic-1-question-177/
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...