DVA-C02 · Question #654
DVA-C02 Question #654: Real Exam Question with Answer & Explanation
Sign in or unlock DVA-C02 to reveal the answer and full explanation for question #654. The question stem and answer options stay visible for context.
Question
A developer is building an application that authenticates users by using an external OpenID Connect (OIDC) identity provider (IdP). The developer needs to provide users with access to objects in an Amazon S3 bucket. The developer has created an IAM role that has an attached policy to allow access to the S3 bucket. The developer needs to grant users temporary credentials to assume the IAM role through the application. Which solution will meet this requirement?
Options
- ACall the AWS STS AssumeRole API operation with an OIDC access token to obtain temporary
- BCall the AWS STS AssumeRoleWithSAML API operation with an OIDC access token to obtain
- CCreate an Amazon Cognito user pool by using the OIDC IdP and the IAM role. Use the user pool
- DCreate an Amazon Cognito identity pool by using the OIDC IdP and the IAM role. Use the identity
Unlock DVA-C02 to see the answer
You've previewed enough free DVA-C02 questions. Unlock DVA-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.