An Amazon S3 bucket is encrypted using an AWS KMS CMK. An IAM user is unable to download objects from the S3 bucket using the AWS Management Console; however, other users can download objects from the S3 bucket. Which policies should the Security Engineer review and modify to resolve this issue? (Choose three.)
A) The CMK policy
B) The VPC endpoint policy
C) The S3 bucket policy
D) The S3 ACL
E) The IAM policy
Correct Answer:
Verified
Q68: The AWS Systems Manager Parameter Store is
Q69: A company uses user data scripts that
Q70: A Security Engineer is building a Java
Q71: A Security Engineer is defining the logging
Q72: An application uses Amazon Cognito to manage
Q74: A Security Engineer is working with a
Q75: The Accounting department at Example Corp. has
Q76: A company uses identity federation to authenticate
Q77: A Security Engineer is implementing a solution
Q78: To meet regulatory requirements, a Security Engineer
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents