A SysOps Administrator is writing an AWS Lambda function in AWS Account A to put objects in an Amazon S3 bucket in AWS Account B. The Lambda function is able to successfully write new objects to the S3 bucket, but IAM users in Account B are unable to delete objects written to the bucket by Account A. Which step will fix this issue?
A) Add s3:DeleteObject permission to the IAM execution role of the AWS Lambda function in Account A. Add s3:DeleteObject permission to the IAM execution role of the AWS Lambda function in Account A.
B) Change the bucket policy of the S3 bucket in Account B to allow s3:DeleteObject permission for Account A. Change the bucket policy of the S3 bucket in Account B to allow permission for Account A.
C) Disable server-side encryption for objects written to the S3 bucket by the Lambda function.
D) Modify the Lambda function to call the S3:PutObjectAcl API operation to specify bucket owner, full control. Modify the Lambda function to call the S3:PutObjectAcl API operation to specify bucket owner, full control.
Correct Answer:
Verified
Q779: What does Amazon IAM stand for?
A) Amazon
Q780: A SysOps Administrator is creating additional Amazon
Q781: A company with dozens of AWS accounts
Q782: After launching a new Amazon EC2 instance
Q783: A SysOps Administrator is responsible for a
Q785: A custom application must be installed on
Q786: According to the shared responsibility model, for
Q787: A local agency plans to deploy 500
Q788: A company is planning to expand into
Q789: A SysOps Administrator is notified that an
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents