SAP-C02 · Question #573
SAP-C02 Question #573: Real Exam Question with Answer & Explanation
Sign in or unlock SAP-C02 to reveal the answer and full explanation for question #573. The question stem and answer options stay visible for context.
Question
A research center is migrating to the AWS Cloud and has moved its on-premises 1 PB object storage to an Amazon S3 bucket. One hundred scientists are using this object storage to store their work-related documents. Each scientist has a personal folder on the object store. All the scientists are members of a single IAM user group. The research center's compliance officer is worried that scientists will be able to access each other's work. The research center has a strict obligation to report on which scientist accesses which documents. The team that is responsible for these reports has little AWS experience and wants a ready-to-use solution that minimizes operational overhead. Which combination of actions should a solutions architect take to meet these requirements? (Choose two.)
Options
- ACreate an identity policy that grants the user read and write access. Add a condition that specifies
- BConfigure a trail with AWS CloudTrail to capture all object-level events in the S3 bucket. Store the
- CEnable S3 server access logging. Configure another S3 bucket as the target for log delivery. Use
- DCreate an S3 bucket policy that grants read and write access to users in the scientists' IAM user
- EConfigure a trail with AWS CloudTrail to capture all object-level events in the S3 bucket and write
Unlock SAP-C02 to see the answer
You've previewed enough free SAP-C02 questions. Unlock SAP-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.