Developers have requested a new Amazon Redshift cluster so they can load new third-party marketing data. The new cluster is ready and the user credentials are given to the developers. The developers indicate that their copy jobs fail with the following error message: "Amazon Invalid operation: S3ServiceException:Access Denied,Status 403,Error AccessDenied." The developers need to load this data soon, so a database specialist must act quickly to solve this issue. What is the MOST secure solution?
A) Create a new IAM role with the same user name as the Amazon Redshift developer user ID. Provide the IAM role with read-only access to Amazon S3 with the assume role action.
B) Create a new IAM role with read-only access to the Amazon S3 bucket and include the assume role action. Modify the Amazon Redshift cluster to add the IAM role.
C) Create a new IAM role with read-only access to the Amazon S3 bucket with the assume role action. Add this role to the developer IAM user ID used for the copy job that ended with an error message.
D) Create a new IAM user with access keys and a new role with read-only access to the Amazon S3 bucket. Add this role to the Amazon Redshift cluster. Change the copy job to use the access keys created.
Correct Answer:
Verified
Q98: A large retail company recently migrated its
Q99: A company wants to migrate its Microsoft
Q100: The Amazon CloudWatch metric for FreeLocalStorage on
Q101: A company is concerned about the cost
Q102: A company has migrated a single MySQL
Q104: A Database Specialist needs to define a
Q105: A company has an ecommerce web application
Q106: A company is using an Amazon Aurora
Q107: A company is using a Single-AZ Amazon
Q108: A company is moving its fraud detection
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents