AWS Certified Data Engineer - Associate
Get started today
Ultimate access to all questions.
Your company is implementing a new data processing solution using AWS Glue and Amazon EMR. You need to ensure that the EMR cluster has the necessary permissions to access data from Amazon S3. Which of the following steps should you take to achieve this?
Your company is implementing a new data processing solution using AWS Glue and Amazon EMR. You need to ensure that the EMR cluster has the necessary permissions to access data from Amazon S3. Which of the following steps should you take to achieve this?
Explanation:
To ensure secure and least privilege access for the EMR cluster to access data from Amazon S3, you should create an IAM role with the minimum required permissions for the EMR cluster to access the specific S3 buckets containing the data, and assign it to the EMR cluster. This approach follows the principle of least privilege by granting the EMR cluster access only to the resources it needs. Option A provides excessive permissions, while options C and D are not recommended as they involve modifying bucket policies or using the root account, which can lead to security risks.