AWS Certified Data Engineer - Associate
Get started today
Ultimate access to all questions.
Your company is implementing a new serverless application using AWS Lambda and Amazon API Gateway. You need to ensure that the API Gateway has the necessary permissions to invoke the Lambda functions. Which of the following steps should you take to achieve this?
Your company is implementing a new serverless application using AWS Lambda and Amazon API Gateway. You need to ensure that the API Gateway has the necessary permissions to invoke the Lambda functions. Which of the following steps should you take to achieve this?
Explanation:
To ensure secure and least privilege access for the API Gateway to invoke Lambda functions, you should create an IAM role with the minimum required permissions for the API Gateway to invoke the specific Lambda functions and assign it to the API Gateway. This approach follows the principle of least privilege by granting the API Gateway access only to the Lambda functions it needs to invoke. Option C is incorrect because the Lambda function's execution role is separate from the API Gateway's permissions. Options A and D are not recommended as they involve using excessive permissions or the root account, which can lead to security risks.