Answer-first summary for fast verification
Answer: Enable versioning and MFA Delete on the S3 bucket.
The correct answer is A: Enable versioning and MFA Delete on the S3 bucket. Enabling versioning ensures that previous versions of your documents are retained, which can help recover from accidental deletions. The MFA Delete feature adds an extra layer of security by requiring multi-factor authentication to delete objects, preventing unauthorized or accidental deletions.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
How can a solutions architect enhance the security of confidential audit documents stored in an Amazon S3 bucket, which is already protected by bucket policies enforcing the principle of least privilege, to mitigate the risk of accidental deletion?
A
Enable versioning and MFA Delete on the S3 bucket.
B
Implement MFA for IAM user accounts of the audit team.
C
Create an S3 Lifecycle policy to prevent s3:DeleteObject during audit periods.
D
Encrypt the S3 bucket with AWS KMS and restrict KMS key access for the audit team.
No comments yet.