An application is running on Amazon EC2 instances. Sensitive information required for the application is stored in an Amazon S3 bucket. The bucket needs to be protected from internet access while only allowing services within the VPC access to the bucket. Which combination of actions should solutions archived take to accomplish this? (Choose two.)
A) Create a VPC endpoint for Amazon S3.
B) Enable server access logging on the bucket.
C) Apply a bucket policy to restrict access to the S3 endpoint.
D) Add an S3 ACL to the bucket that has sensitive information.
E) Restrict users using the IAM policy to use the specific bucket.
Correct Answer:
Verified
Q63: An application running on an Amazon EC2
Q64: A solutions architect must create a highly
Q65: A company has created an isolated backup
Q66: A company has a mobile chat application
Q67: A company runs a website on Amazon
Q69: A company currently stores symmetric encryption keys
Q70: A company has an on-premises data center
Q71: A company wants to migrate a workload
Q72: A company recently launched its website to
Q73: A company running an on-premises application is
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents