SAA-C03 · Question #750
SAA-C03 Question #750: Real Exam Question with Answer & Explanation
Sign in or unlock SAA-C03 to reveal the answer and full explanation for question #750. The question stem and answer options stay visible for context.
Question
A company has stored a file in an Amazon S3 bucket. The file contains IP address allow lists and IP address deny lists. The company needs to be able to access the file by using an HTTP endpoint. The company's firewalls, which are not deployed on AWS, need to be able to read the file. The company wants to restrict access to the file to only the firewall IP addresses. The company has configured the Amazon S3 Block Public Access feature for this AWS account. Which solution meets these requirements?
Options
- AConfigure the S3 bucket as a static website. Create a bucket policy that restricts website access
- BCreate a bucket policy that explicitly allows access from only the firewall IP addresses. Add the
- CCreate an Amazon CloudFront distribution. Add the S3 bucket as the origin. Create an origin
- DCreate an AWS Lambda function that has access to the file. Configure the Lambda function to
Unlock SAA-C03 to see the answer
You've previewed enough free SAA-C03 questions. Unlock SAA-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.