Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Professional All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional exam
Go to Exam

Exam AWS Certified Solutions Architect - Professional topic 1 question 719 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional
Question #: 719
Topic #: 1
[All AWS Certified Solutions Architect - Professional Questions]

A company has a data lake in Amazon S3 that needs to be accessed by hundreds of applications across many AWS accounts. The company's information security policy states that the S3 bucket must not be accessed over the public internet and that each application should have the minimum permissions necessary to function.
To meet these requirements, a solutions architect plans to use an S3 access point that is restricted to specific VPCs for each application.
Which combination of steps should the solutions architect take to implement this solution? (Choose two.)

  • A. Create an S3 access point for each application in the AWS account that owns the S3 bucket. Configure each access point to be accessible only from the application's VPC. Update the bucket policy to require access from an access point
  • B. Create an interface endpoint for Amazon S3 in each application's VPC. Configure the endpoint policy to allow access to an S3 access point. Create a VPC gateway attachment for the S3 endpoint
  • C. Create a gateway endpoint for Amazon S3 in each application's VPC. Configure the endpoint policy to allow access to an S3 access point. Specify the route table that is used to access the access point.
  • D. Create an S3 access point for each application in each AWS account and attach the access points to the S3 bucket. Configure each access point to be accessible only from the application's VPC. Update the bucket policy to require access from an access point.
  • E. Create a gateway endpoint for Amazon S3 in the data lake's VPC. Attach an endpoint policy to allow access to the S3 bucket. Specify the route table that is used to access the bucket
Show Suggested Answer Hide Answer
Suggested Answer: AC 🗳️
by Jaypdv at April 30, 2021, 11:51 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
beebatov
Highly Voted 3 years ago
A & C. https://joe.blog.freemansoft.com/2020/04/protect-data-in-cloud-with-s3-access.html
upvoted 6 times
...
Simon523
Most Recent 1 year, 1 month ago
Selected Answer: AC
https://docs.aws.amazon.com/vpc/latest/privatelink/gateway-endpoints.html
upvoted 1 times
...
SkyZeroZx
1 year, 3 months ago
Selected Answer: AC
A & C look to be the "best" options.
upvoted 1 times
...
janvandermerwer
1 year, 11 months ago
Selected Answer: AC
A & C look to be the "best" options.
upvoted 1 times
...
Sumit_Kumar
2 years, 1 month ago
https://aws.amazon.com/blogs/storage/managing-amazon-s3-access-with-vpc-endpoints-and-s3-access-points/
upvoted 1 times
...
xyzman
2 years, 3 months ago
It's A,C but the path is App --> S3 Gateway Endpoint --> S3 Access Point --> S3 Bucket
upvoted 1 times
...
pal40sg
2 years, 7 months ago
Selected Answer: AC
It's A,C App --> S3 Access Point --> S3 Gateway Endpoint --> S3 Bucket
upvoted 1 times
JohnPi
2 years ago
path is App --> S3 Gateway Endpoint --> S3 Access Point --> S3 Bucket
upvoted 1 times
...
...
AzureDP900
2 years, 10 months ago
A,C is right
upvoted 1 times
...
andylogan
2 years, 11 months ago
It's A,C App --> S3 Access Point --> S3 Gateway Endpoint --> S3 Bucket
upvoted 3 times
JohnPi
2 years ago
path is App --> S3 Gateway Endpoint --> S3 Access Point --> S3 Bucket
upvoted 2 times
...
...
Goram113
2 years, 11 months ago
can't see this route step here https://aws.amazon.com/blogs/storage/managing-amazon-s3-access-with-vpc-endpoints-and-s3-access-points/ but A&C seems to be the best '
upvoted 1 times
...
student22
2 years, 11 months ago
A,C App --> S3 Access Point --> S3 Gateway Endpoint --> S3 Bucket
upvoted 3 times
...
tgv
2 years, 11 months ago
AAA CCC ---
upvoted 1 times
...
WhyIronMan
2 years, 11 months ago
I'll go with A, C
upvoted 2 times
...
Waiweng
2 years, 12 months ago
it's A&C
upvoted 2 times
...
mustpassla
2 years, 12 months ago
A & C, https://aws.amazon.com/s3/features/access-points/
upvoted 1 times
...
vkbajoria
2 years, 12 months ago
It is A & C.
upvoted 1 times
...
tvs
3 years ago
AC https://aws.amazon.com/s3/features/access-points/ & https://aws.amazon.com/blogs/storage/managing-amazon-s3-access-with-vpc-endpoints-and-s3-access-points/
upvoted 3 times
...
Load full discussion...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel