SAP-C02 · Question #717
SAP-C02 Question #717: Real Exam Question with Answer & Explanation
Sign in or unlock SAP-C02 to reveal the answer and full explanation for question #717. The question stem and answer options stay visible for context.
Question
A solutions architect must provide a secure way for a team of cloud engineers to use the AWS CLI to upload objects into an Amazon S3 bucket. Each cloud engineer has an IAM user, IAM access keys, and a virtual multi-factor authentication (MFA) device. The IAM users for the cloud engineers are in a group that is named S3-access. The cloud engineers must use MFA to perform any actions in Amazon S3. Which solution will meet these requirements?
Options
- AAttach a policy to the S3 bucket to prompt the IAM user for an MFA code when the IAM user
- BUpdate the trust policy for the S3-access group to require principals to use MFA when principals
- CAttach a policy to the S3-access group to deny all S3 actions unless MFA is present. Use IAM
- DAttach a policy to the S3-access group to deny all S3 actions unless MFA is present. Request
Unlock SAP-C02 to see the answer
You've previewed enough free SAP-C02 questions. Unlock SAP-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.