A retail company needs to provide a series of data files to another company, which is its business partner. These files are saved in an Amazon S3 bucket under Account A which belongs to the retail company. The business partner company wants one of its IAM users, User_DataProcessor, to access the files from its own AWS account (Account B). Which combination of steps must the companies take so that User_DataProcessor can access the S3 bucket successfully? (Select TWO.) A Tum on the er心s-onginresource shenng (CORS) f豌turefor lhe S3 bu心et II B In压叩ntA set the S3 bucket policy to t沺ro11ow,ng （飞ff..,.c;t": .. 过low", “入C己，ion": ( "a3:G,i,ct0bjli!Ct", "s3::.�s迳UC压 �ft l, 蛐R令皇ourc!!.. : "a口n:aws:s J:::he.co叩二入auc'.i<e:: 人｀元幻 C, In比count A set the S3 bu心etpolicy to lhe following ｛ ”：：：丘ec;乙”：一过low", '"?rinc扣吐鞫：｛ ''At·1S,":'"a::n:aws :ia::i: :Aei:::ount.B:ua, 江/User t ）身 .. ..., 亡之二on":

Exam-Like

Turn on the cross-origin resource sharing (CORS) feature for the S3 bucket in Account A

0.0%

In Account A, set the S3 bucket policy to the following: {"Effect":"Allow", "Action":[ "g3:Getobject", "g3:ListBucket" ], "Resource":"arn:aws:s3:::AccountABucketName/" }

10.0%

In Account A, set the S3 bucket policy to the following { "Effect":"Allow" "Principa1":{ "AMS":"arn:aws:iam: :AccountB:user/User Dataprocesso }, "Action":[ "g3:Getobject", "g3:LietBucket" ],

40.0%

In Account B, set the permissions of User DataProcessor to the following { "Effect": "Allow", "Action":[ "s3:Getobject", "g3:LigtBucket" ], "Resource":"arn:aws:s3:::AccountABucketName/" }

50.0%

In Account B, set the permissions of User_DataProcessor to the following: { "Effect":"Allow", "Principal":{ "ANS":"arn:aws:iam::AccountB:user/User_Dataprocessor" }, "Action":[ "s3:Getobject", "s3:ListBucket" ], "Resource":[ "arn:aws:s3:::AccountABucketName/" ] }

AWS Certified Solutions Architect - Professional

Get started today

Comments