SAP-C02 · Question #51
SAP-C02 Question #51: Real Exam Question with Answer & Explanation
Sign in or unlock SAP-C02 to reveal the answer and full explanation for question #51. The question stem and answer options stay visible for context.
Question
A developer reports receiving an Error 403: Access Denied message when they try to download an object from an Amazon S3 bucket. The S3 bucket is accessed using an S3 endpoint inside a VPC. and is encrypted with an AWS KMS key. A solutions architect has verified that (he developer is assuming the correct IAM role in the account that allows the object to be downloaded. The S3 bucket policy and the NACL are also valid. Which additional step should the solutions architect take to troubleshoot this issue?
Options
- AEnsure that blocking all public access has not been enabled in the S3 bucket.
- BVerify that the IAM rote has permission to decrypt the referenced KMS key.
- CVerify that the IAM role has the correct trust relationship configured.
- DCheck that local firewall rules are not preventing access to the S3 endpoint.
Unlock SAP-C02 to see the answer
You've previewed enough free SAP-C02 questions. Unlock SAP-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.