SCS-C03 · Question #26
SCS-C03 Question #26: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C03 to reveal the answer and full explanation for question #26. The question stem and answer options stay visible for context.
Question
A company runs an application on an Amazon EC2 instance. The application generates invoices and stores them in an Amazon S3 bucket. The instance profile that is attached to the instance has appropriate access to the S3 bucket. The company needs to share each invoice with multiple clients that do not have AWS credentials. Each client must be able to download only the client's own invoices. Clients must download their invoices within 1 hour of invoice creation. Clients must use only temporary credentials to access the company's AWS resources. Which additional step will meet these requirements?
Options
- AUpdate the S3 bucket policy to ensure that clients that use pre-signed URLs have the S3:Get*
- BAdd a StringEquals condition to the IAM role policy for the EC2 instance profile. Configure the
- CUpdate the script to use AWS Security Token Service (AWS STS) to obtain new credentials each
- DGenerate an access key and a secret key for an IAM user that has S3:GetObject permissions on
Unlock SCS-C03 to see the answer
You've previewed enough free SCS-C03 questions. Unlock SCS-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.