SAP-C02 · Question #510
SAP-C02 Question #510: Real Exam Question with Answer & Explanation
Sign in or unlock SAP-C02 to reveal the answer and full explanation for question #510. The question stem and answer options stay visible for context.
Question
A company has a data lake in Amazon S3 that needs to be accessed by hundreds of applications across many AWS accounts. The company's information security policy states that the S3 bucket must not be accessed over the public internet and that each application should have the minimum permissions necessary to function. To meet these requirements, a solutions architect plans to use an S3 access point that is restricted to specific VPCs for each application. Which combination of steps should the solutions architect take to implement this solution? (Choose two.)
Options
- ACreate an S3 access point for each application in the AWS account that owns the S3 bucket.
- BCreate an interface endpoint for Amazon S3 in each application's VPC. Configure the endpoint
- CCreate a gateway endpoint for Amazon S3 in each application's VPConfigure the endpoint policy
- DCreate an S3 access point for each application in each AWS account and attach the access
- ECreate a gateway endpoint for Amazon S3 in the data lake's VPC. Attach an endpoint policy to
Unlock SAP-C02 to see the answer
You've previewed enough free SAP-C02 questions. Unlock SAP-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.