Answer-first summary for fast verification
Answer: Create an IAM role with the minimum required permissions for the Redshift cluster to access the specific S3 buckets containing the data, and assign it to the Redshift cluster.
To ensure secure and least privilege access for the Redshift cluster to access data from Amazon S3, you should create an IAM role with the minimum required permissions for the Redshift cluster to access the specific S3 buckets containing the data, and assign it to the Redshift cluster. This approach follows the principle of least privilege by granting the Redshift cluster access only to the resources it needs. Option A provides excessive permissions, while options C and D are not recommended as they involve modifying bucket policies or using the root account, which can lead to security risks.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your company is implementing a new data warehousing solution using Amazon Redshift. You need to ensure that the Redshift cluster can securely access data from Amazon S3. Which of the following steps should you take to achieve this?
A
Create an IAM role with full access to all S3 buckets and assign it to the Redshift cluster.
B
Create an IAM role with the minimum required permissions for the Redshift cluster to access the specific S3 buckets containing the data, and assign it to the Redshift cluster.
C
Modify the S3 bucket policy to allow access from the Redshift service.
D
Use the root account credentials to configure the Redshift cluster to access the S3 data.
No comments yet.