A company has a VPC with public and private subnets. An Amazon EC2 based application resides in the private subnets and needs to process raw .csv files stored in an Amazon S3 bucket. A SysOps administrator has set up the correct IAM role with the required permissions for the application to access the S3 bucket, but the application is unable to communicate with the S3 bucket. Which action will solve this problem while adhering to least privilege access?
A) Add a bucket policy to the S3 bucket permitting access from the IAM role.
B) Attach an S3 gateway endpoint to the VPC. Configure the route table for the private subnet.
C) Configure the route table to allow the instances on the private subnet access through the internet gateway.
D) Create a NAT Gateway in a private subnet and configure the route table for the private subnets.

Question

Quizplus · Accepted Answer

The Answer of A company has a VPC with public and private subnets. An Amazon EC2 based application resides in the private subnets and needs to process raw .csv files stored in an Amazon S3 bucket. A SysOps administrator has set up the correct IAM role with the required permissions for the application to access the S3 bucket, but the application is unable to communicate with the S3 bucket. Which action will solve this problem while adhering to least privilege access?
A) Add a bucket policy to the S3 bucket permitting access from the IAM role.
B) Attach an S3 gateway endpoint to the VPC. Configure the route table for the private subnet.
C) Configure the route table to allow the instances on the private subnet access through the internet gateway.
D) Create a NAT Gateway in a private subnet and configure the route table for the private subnets.

A Company Has a VPC with Public and Private Subnets