A company stores all personally identifiable information (PII) in an Amazon DynamoDB table named PII in Account A. An application running on Amazon EC2 instances in Account B requires access to the PII table. An administrator in Account A created an IAM role named AccessPII with privileges to access the PII table, and made Account B a trusted entity. Which combination of additional steps should developers take to access the table? (Choose two.)
A) Ask an administrator in Account B to allow the EC2 IAM role permission to assume the AccessPII role.
B) Ask an administrator in Account B to allow the EC2 IAM role permission to assume the AccessPII role with predefined service control policies.
C) Ask an administrator in Account A to allow the EC2 IAM role permission to assume the AccessPII role with predefined service control policies.
D) Include the AssumeRole API in the application code logic to obtain credentials to access the PII table.
E) Include the GetSessionToken API in the application code logic to obtain credentials to access the PII table.
Correct Answer:
Verified
Q143: An application needs to encrypt data that
Q144: An ecommerce startup is preparing for an
Q145: A developer is creating a role to
Q146: A developer receives the following error message
Q147: A global company has an application running
Q149: A company has 25,000 employees and is
Q150: A developer is refactoring a monolithic application.
Q151: A developer is updating an application deployed
Q152: A company is developing a new web
Q153: A development team wants to run their
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents