ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty SCS-C02 All Questions

View all questions & answers for the AWS Certified Security - Specialty SCS-C02 exam
Go to Exam

Exam AWS Certified Security - Specialty SCS-C02 topic 1 question 22 discussion

Exam question from Amazon's AWS Certified Security - Specialty SCS-C02
Question #: 22
Topic #: 1
[All AWS Certified Security - Specialty SCS-C02 Questions]

A security engineer creates an Amazon S3 bucket policy that denies access to all users. A few days later, the security engineer adds an additional statement to the bucket policy to allow read-only access to one other employee. Even after updating the policy, the employee sill receives an access denied message.
What is the likely cause of this access denial?

  • A. The ACL in the bucket needs to be updated.
  • B. The IAM policy does not allow the user to access the bucket.
  • C. It takes a few minutes for a bucket policy to take effect.
  • D. The allow permission is being overridden by the deny.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by aragon_saa at Oct. 4, 2023, 1:14 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
navid1365
3 months, 3 weeks ago
Selected Answer: D
Explicit deny statements cannot be overridden by allow statements
upvoted 3 times
...
trashbox
8 months, 2 weeks ago
Exam on 2023-12-18
upvoted 1 times
...
[Removed]
10 months, 1 week ago
Selected Answer: D
"An explicit deny in any policy overrides any allows." https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html#policy-eval-denyallow
upvoted 4 times
...
lalee2
10 months, 1 week ago
Selected Answer: D
D is my answer
upvoted 1 times
...
100fold
10 months, 2 weeks ago
Selected Answer: D
Agree answer D
upvoted 2 times
...
aragon_saa
11 months ago
https://www.examtopics.com/discussions/amazon/view/30027-exam-aws-certified-security-specialty-topic-1-question-177/
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago