nerdexam
Amazon

DVA-C02 · Question #716

A developer is creating an application that requires programmatic access to Amazon S3. The developer deploys the application as an AWS Lambda function. The developer creates an IAM policy that allows

The correct answer is D. Create an IAM role and attach the existing IAM policy. Specify the Lambda function as a trusted. Assigning an IAM role with the necessary permissions as the Lambda function’s execution role provides secure, short-lived credentials automatically managed by AWS, eliminating the need to manage long-lived access keys.

Submitted by yaw92· Mar 5, 2026Security

Question

A developer is creating an application that requires programmatic access to Amazon S3. The developer deploys the application as an AWS Lambda function. The developer creates an IAM policy that allows the required access to Amazon S3. The developer needs to configure an access solution that does not require the developer to manage long-lived credentials. Which additional steps will meet this requirement?

Options

  • ACreate an IAM user and attach the existing IAM policy. Create an AWS access key and a secret
  • BCreate an IAM user and attach the existing IAM policy. Create an AWS access key and a secret
  • CCreate an IAM user and attach the existing IAM policy. Create an AWS access key and a secret
  • DCreate an IAM role and attach the existing IAM policy. Specify the Lambda function as a trusted

How the community answered

(47 responses)
  • A
    9% (4)
  • B
    4% (2)
  • C
    15% (7)
  • D
    72% (34)

Explanation

Assigning an IAM role with the necessary permissions as the Lambda function’s execution role provides secure, short-lived credentials automatically managed by AWS, eliminating the need to manage long-lived access keys.

Community Discussion

No community discussion yet for this question.

Full DVA-C02 Practice