A Developer has created a new AWS IAM user that has s3 putObject permission to write to a specific Amazon S3 bucket. This S3 bucket uses server-side encryption with AWS KMS managed (SSE-KMS) as the default encryption. Using the access key and secret key of the IAM user, the application received an access denied error when calling the PutObject API. How can this issue be resolved?
A) Update the policy of the IAM user to allow the s3 Encrypt action.
B) Update the bucket policy of the S3 bucket to allow the IAM user to upload objects.
C) Update the policy of the IAM user to allow the kms:GenerateDataKey action.
D) Update the ACL of the S3 bucket to allow the IAM user to upload objects.
Correct Answer:
Verified
Q250: An application is running on a cluster
Q251: An AWS Lambda function generates a 3MB
Q252: A nightly batch job loads 1 million
Q253: A company has a web application that
Q254: A Developer wants to find a list
Q256: To include objects defined by the AWS
Q257: A Developer is writing a mobile application
Q258: A Developer is creating a template that
Q259: An AWS Elastic Beanstalk application needs to
Q260: A Development team has pushed out 10
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents