AWS Certified Solutions Architect - Associate
Get started today
Ultimate access to all questions.
How can a solutions architect enable team access to S3 buckets across development and production AWS accounts, adhering to the principle of least privilege?
How can a solutions architect enable team access to S3 buckets across development and production AWS accounts, adhering to the principle of least privilege?
Exam-Like
Explanation:
The correct answer is B: Configuring the production role's trust policy to include the development account. This approach allows the IAM users in the development account to assume the role in the production account, granting them the necessary access to the S3 bucket in the production account. This solution adheres to the principle of least privilege by only granting the required permissions and not providing overly broad access such as Administrator Access.