A company utilizes an AWS CodeBuild project to build and package their application, which is then copied to a shared Amazon S3 bucket for deployment across multiple AWS accounts. The DevOps engineer has identified that any AWS account holder can download the artifacts. What measures should the DevOps engineer implement to prevent unauthorized access to these artifacts?

Exam-Like

Modify the post_build command to use --acl public-read and configure a bucket policy that grants read access to the relevant AWS accounts only._

0.0%

Configure a default ACL for the S3 bucket that defines the set of authenticated users as the relevant AWS accounts only and grants read-only access.

0.0%

Create an S3 bucket policy that grants read access to the relevant AWS accounts and denies read access to the principal “”.

0.0%

Modify the post_build command to remove --acl authenticated-read and configure a bucket policy that allows read access to the relevant AWS accounts only._

100.0%

AWS Certified DevOps Engineer - Professional

Get started today

Comments