SCS-C03 · Question #134
SCS-C03 Question #134: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C03 to reveal the answer and full explanation for question #134. The question stem and answer options stay visible for context.
Question
A company uses several AWS CloudFormation stacks to handle the deployment of a suite of applications. The leader of the company's application development team notices that the stack deployments fail with permission errors when some team members try to deploy the stacks. However, other team members can deploy the stacks successfully. The team members access the account by assuming a role that has a specific set of permissions. All team members have permissions to perform operations on the stacks. Which combination of steps will ensure consistent deployment of the stacks MOST securely? (Select THREE.)
Options
- ACreate a service role that has a composite principal that contains each service that needs the
- BCreate a service role that has cloudformation.amazonaws.com as the service principal.
- CAdd policies that reference each CloudFormation stack ARN.
- DAdd policies that reference the ARNs of each AWS service that requires permissions.
- EUpdate each stack to use the service role.
- FAdd a policy to each member role to allow the iam:PassRole action for the service role.
Unlock SCS-C03 to see the answer
You've previewed enough free SCS-C03 questions. Unlock SCS-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.