AWS Certified Solutions Architect - Associate
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
A solutions architect is deploying a serverless application using AWS Lambda and Amazon EventBridge. The architect must adhere to the principle of least privilege when configuring the Lambda function's permissions. Which configuration is appropriate for an EventBridge rule to invoke the Lambda function?
Explanation:
The correct answer is D. Lambda functions can be invoked by EventBridge rules, and to adhere to the principle of least privilege, a resource-based policy should be used. Option D correctly states the use of a resource-based policy that specifically allows the lambda:InvokeFunction action by the Service: events.amazonaws.com principal. This ensures that only EventBridge can invoke the Lambda function without granting unnecessary permissions.