DVA-C02 · Question #178
DVA-C02 Question #178: Real Exam Question with Answer & Explanation
The correct answer is C: Create a trust policy that specifies the EC2 service principal. Associate the role with the policy.. https://aws.amazon.com/blogs/security/how-to-use-trust-policies-with-iam-roles/
Question
A developer is troubleshooting an application that uses Amazon DynamoDB in the us-west-2 Region. The application is deployed to an Amazon EC2 instance. The application requires read- only permissions to a table that is named Cars. The EC2 instance has an attached IAM role that contains the following IAM policy: When the application tries to read from the Cars table, an Access Denied error occurs. How can the developer resolve this error? A. Modify the IAM policy resource to be 揳rn:aws:dynamodb:us-west-2:account-id:table/*?
Options
- BModify the IAM policy to include the dynamodb:* action.
- CCreate a trust policy that specifies the EC2 service principal. Associate the role with the policy.
- DCreate a trust relationship between the role and dynamodb.amazonaws.com.
Explanation
https://aws.amazon.com/blogs/security/how-to-use-trust-policies-with-iam-roles/
Community Discussion
No community discussion yet for this question.