A company has multiple AWS accounts and manages these accounts which AWS Organizations. A developer was given IAM user credentials to access AWS resources. The developer should have read-only access to all Amazon S3 buckets in the account. However, when the developer tries to access the S3 buckets from the console, they receive an access denied error message with no bucket listed. A solution architect reviews the permissions and finds that the developer's IAM user is listed as having read-only access to all S3 buckets in the account. Which additional steps should the solutions architect take to troubleshoot the issue? (Choose two.)
A) Check the bucket policies for all S3 buckets.
B) Check the ACLs for all S3 buckets.
C) Check the SCPs set at the organizational units (OUs) .
D) Check for the permissions boundaries set for the IAM user.
E) Check if an appropriate IAM role is attached to the IAM user.
Correct Answer:
Verified
Q669: A company plans to migrate to AWS.
Q670: A healthcare company runs a production workload
Q671: A North American company with headquarters on
Q672: A solutions architect is designing a network
Q673: A company hosts an application on Amazon
Q675: A company is planning on hosting its
Q676: A fitness tracking company serves users around
Q677: A large company recently experienced an unexpected
Q678: A company needs to create a centralized
Q679: A company runs an application on a
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents