SCS-C02 · Question #310
SCS-C02 Question #310: Real Exam Question with Answer & Explanation
The correct answer is C: Change the Resource section to "arn:aws:s3:::appbucket/*'.. When you define access to objects in a bucket you need to ensure that you specify to which objects in the bucket access needs to be given to. In this case, the * can be used to assign the permission to all objects in the bucket Option A is invalid because the right permissions ar
Question
You are deivising a policy to allow users to have the ability to access objects in a bucket called appbucket. You define the below custom bucket policy But when you try to apply the policy you get the error "Action does not apply to any resource(s) in statement." What should be done to rectify the error?
Options
- AChange the IAM permissions by applying PutBucketPolicy permissions.
- BVerify that the policy has the same name as the bucket name. If not. make it the same.
- CChange the Resource section to "arn:aws:s3:::appbucket/*'.
- DCreate the bucket "appbucket" and then apply the policy.
Explanation
When you define access to objects in a bucket you need to ensure that you specify to which objects in the bucket access needs to be given to. In this case, the * can be used to assign the permission to all objects in the bucket Option A is invalid because the right permissions are already provided as per the question Option B is invalid because it is not necessary that the policy has the same name as the bucket Option D is invalid because this should be the default flow for applying the policy https://docs.aws.amazon.com/AmazonS3/latest/dev/example-bucket-policies.html
Community Discussion
No community discussion yet for this question.