DVA-C02 · Question #181
DVA-C02 Question #181: Real Exam Question with Answer & Explanation
Sign in or unlock DVA-C02 to reveal the answer and full explanation for question #181. The question stem and answer options stay visible for context.
Question
A developer has code that is stored in an Amazon S3 bucket. The code must be deployed as an AWS Lambda function across multiple accounts in the same AWS Region as the S3 bucket. An AWS CloudFormation template that runs for each account will deploy the Lambda function. What is the MOST secure way to allow CloudFormation to access the Lambda code in the S3 bucket?
Options
- AGrant the CloudFormation service role the S3 ListBucket and GetObject permissions. Add a
- BGrant the CloudFormation service role the S3 GetObject permission. Add a bucket policy to
- CUse a service-based link to grant the Lambda function the S3 ListBucket and GetObject
- DUse a service-based link to grant the Lambda function the S3 GetObject permission. Add a
Unlock DVA-C02 to see the answer
You've previewed enough free DVA-C02 questions. Unlock DVA-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.