A Developer has created a new AWS IAM user that has s3:putObject permission to write to a specific Amazon S3 bucket. This S3 bucket uses server-side encryption with AWS KMS managed keys (SSE-KMS) as the default encryption. Using the access key and secret key of the IAM user, the application received an access denied error when calling the PutObject API. How can this issue be resolved?
A) Update the policy of the IAM user to allow the s3:Encrypt action.
B) Update the bucket policy of the S3 bucket to allow the IAM user to upload objects.
C) Update the policy of the IAM user to allow the kms:GenerateDataKey action.
D) Update the ACL of the S3 bucket to allow the IAM user to upload objects.
Correct Answer:
Verified
Q378: A developer is setting up Amazon API
Q379: A Developer wants to use AWS X-Ray
Q380: A company experienced partial downtime during the
Q381: A developer has created a REST API
Q382: A developer is building an application on
Q384: A company is developing a serverless ecommerce
Q385: A company is developing a report executed
Q386: A Developer is storing sensitive data generated
Q387: How does Envelope Encryption work in AWS
Q388: A Developer is writing an application that
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents