SAA-C03 · Question #403
SAA-C03 Question #403: Real Exam Question with Answer & Explanation
The correct answer is D: Create an IAM role that has a policy that grants the minimum required permissions to access the. The best practice for granting AWS resource access to EC2 instances is to use IAM roles, not users or long-lived access keys. You create an IAM role with a policy that grants the minimum permissions required, then attach that role to an instance profile associated with the EC2 in
Question
A company runs an application on Amazon EC2 instances. The application needs to access an Amazon RDS database. The company wants to grant the EC2 instances access permissions to the RDS database while following the principle of least privilege. Which solution will meet these requirements?
Options
- ACreate an IAM user that has a policy that grants administrative permissions. Use the IAM user's
- BCreate an IAM user that has a policy that grants the minimum required permissions to access the
- CCreate an IAM role that has a policy that grants the minimum required permissions to access the
- DCreate an IAM role that has a policy that grants the minimum required permissions to access the
Explanation
The best practice for granting AWS resource access to EC2 instances is to use IAM roles, not users or long-lived access keys. You create an IAM role with a policy that grants the minimum permissions required, then attach that role to an instance profile associated with the EC2 instance. The instance then automatically receives temporary credentials for AWS service
Community Discussion
No community discussion yet for this question.