ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Associate SAA-C03 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Associate SAA-C03 exam
Go to Exam

Exam AWS Certified Solutions Architect - Associate SAA-C03 topic 1 question 634 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Associate SAA-C03
Question #: 634
Topic #: 1
[All AWS Certified Solutions Architect - Associate SAA-C03 Questions]

A company collects 10 GB of telemetry data daily from various machines. The company stores the data in an Amazon S3 bucket in a source data account.

The company has hired several consulting agencies to use this data for analysis. Each agency needs read access to the data for its analysts. The company must share the data from the source data account by choosing a solution that maximizes security and operational efficiency.

Which solution will meet these requirements?

  • A. Configure S3 global tables to replicate data for each agency.
  • B. Make the S3 bucket public for a limited time. Inform only the agencies.
  • C. Configure cross-account access for the S3 bucket to the accounts that the agencies own.
  • D. Set up an IAM user for each analyst in the source data account. Grant each user access to the S3 bucket.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by potomac at Nov. 7, 2023, 2:11 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
pentium75
Highly Voted 9 months, 3 weeks ago
Selected Answer: C
A doesn't exist B is a big "hell no" D is a bad practice, even with IAM you'd use groups
upvoted 9 times
...
xBUGx
Highly Voted 7 months, 2 weeks ago
What if other agencies don't have an aws account?
upvoted 7 times
chickenmf
7 months, 1 week ago
then we politely tell them "no."
upvoted 9 times
...
...
awsgeek75
Most Recent 9 months, 2 weeks ago
Selected Answer: C
Others have given reason by ABD are wrong. In case you need it, here is an AWS example exercise of understanding option C https://docs.aws.amazon.com/AmazonS3/latest/userguide/example-walkthroughs-managing-access-example2.html
upvoted 5 times
...
TariqKipkemei
10 months, 4 weeks ago
Selected Answer: C
With cross-account bucket permissions Account A—can grant another AWS account, Account B, permission to access its resources such as buckets and objects. Account B can then delegate those permissions to users in its account. https://docs.aws.amazon.com/AmazonS3/latest/userguide/example-walkthroughs-managing-access-example2.html#:~:text=4%3A%20Clean%20up-,An%20AWS%20account,-%E2%80%94for%20example%2C%20Account
upvoted 3 times
...
NickGordon
11 months, 2 weeks ago
Selected Answer: C
C is the best answer
upvoted 3 times
...
cciesam
11 months, 2 weeks ago
Selected Answer: D
C may not correct as it's doesn't say if the analyst are using AWS services
upvoted 1 times
awsgeek75
9 months, 2 weeks ago
"consulting agencies" means some companies which may have one or more analysts each. Making IAM users for each individual to manage permissions is not well-architected. You would at least create groups and assign it to users. D will work as it is possible but it won't minimize "operational efficiency"
upvoted 2 times
...
NickGordon
11 months, 2 weeks ago
in that case, an analyst user group should be created and the access should be assigned to the group. So C is better
upvoted 3 times
...
...
potomac
11 months, 3 weeks ago
Selected Answer: C
I think it is C
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago