SCS-C02 · Question #56
SCS-C02 Question #56: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C02 to reveal the answer and full explanation for question #56. The question stem and answer options stay visible for context.
Question
A security engineer is trying to use Amazon EC2 Image Builder to create an image of an EC2 instance. The security engineer has configured the pipeline to send logs to an Amazon S3 bucket. When the security engineer runs the pipeline, the build fails with the following error: "AccessDenied: Access Denied status code: 403". The security engineer must resolve the error by implementing a solution that complies with best practices for least privilege access. Which combination of steps will meet these requirements? (Choose two.)
Options
- AEnsure that the following policies are attached to the IAM role that the security engineer is using:
- BEnsure that the following policies are attached to the instance profile for the EC2 instance:
- CEnsure that the AWSImageBuilderFullAccess policy is attached to the instance profile for the EC2
- DEnsure that the security engineer's IAM role has the s3:PutObject permission for the S3 bucket.
- EEnsure that the instance profile for the EC2 instance has the s3:PutObject permission for the S3
Unlock SCS-C02 to see the answer
You've previewed enough free SCS-C02 questions. Unlock SCS-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.