AIP-C01 · Question #93
AIP-C01 Question #93: Real Exam Question with Answer & Explanation
Sign in or unlock AIP-C01 to reveal the answer and full explanation for question #93. The question stem and answer options stay visible for context.
Question
A software company is using Amazon Q Business to build an AI assistant that allows employees to access company information and personal information by using natural language prompts. The company stores this information in an Amazon S3 bucket. Each department in the company has a dedicated prefix in the S3 bucket. Each object name includes the S3 prefix of the department that it belongs to. Each department can belong to only a single group in AWS IAM Identity Center. Each employee belongs to a single department. The company configures Amazon Q Business to access data stored in an S3 bucket as a data source. The company needs to ensure that the AI assistant respects access controls based on the user's IAM Identity Center group membership. Which solution will meet this requirement with the LEAST operational overhead?
Options
- ACreate a JSON file named acl.json in each department folder. In each file, create access control
- BCreate a single JSON file named acl.json at the top level of the S3 bucket. Add access control
- CFor each IAM Identity Center group, create a separate permissions set that denies access to all
- DCreate a metadata file named metadata.json at the top level of the S3 bucket. Add an
Unlock AIP-C01 to see the answer
You've previewed enough free AIP-C01 questions. Unlock AIP-C01 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.