A company is storing sensitive user information in an Amazon S3 bucket. The company wants to provide secure access to this bucket from the application tier running on Amazon EC2 instances inside a VPC. Which combination of steps should a solutions architect take to accomplish this? (Choose two.)
A) Configure a VPC gateway endpoint for Amazon S3 within the VPC.
B) Create a bucket policy to make the objects in the S3 bucket public.
C) Create a bucket policy that limits access to only the application tier running in the VPC.
D) Create an IAM user with an S3 access policy and copy the IAM credentials to the EC2 instance.
E) Create a NAT instance and have the EC2 instances use the NAT instance to access the S3 bucket.
Correct Answer:
Verified
Q240: A company is preparing to deploy a
Q241: A solutions architect is developing a multiple-subnet
Q242: A disaster response team is using drones
Q243: A company is preparing to store confidential
Q244: A company has a mobile game that
Q246: A company has a multi-tier application deployed
Q247: A company hosts multiple production applications. One
Q248: A company is preparing to migrate its
Q249: A company has an Amazon S3 bucket
Q250: A user owns a MySQL database that
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents