AWS Certified Cloud Practitioner

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Add a policy to the data engineer's IAM user that includes the sts:AssumeRole action for the AWS Glue and SageMaker service principals in the trust policy.

To allow Amazon SageMaker Studio to integrate and invoke AWS Glue interactive sessions, the execution role or the IAM user requires appropriate trust relationships and `sts:AssumeRole` permissions. This securely delegates the authority to AWS Glue and SageMaker to execute tasks and prepare machine learning models effectively on behalf of the user.

Author: Ritesh Yadav

Quick Answer

Answer-first summary for fast verification

Answer: Add a policy to the data engineer's IAM user that includes the sts:AssumeRole action for the AWS Glue and SageMaker service principals in the trust policy.

Author: Ritesh Yadav

Comments (0)

No comments yet.

Question 43
A data engineer is configuring Amazon SageMaker Studio to use AWS Glue interactive sessions to prepare data for machine learning (ML) models. The data engineer receives an access denied error when the data engineer tries to prepare the data by using SageMaker Studio. Which change should the engineer make to gain access to SageMaker Studio?

Real Exam

Community

RRitesh

Last updated: April 29, 2026 at 05:44

Add the AWSSGlueServiceRole managed policy to the data engineer's IAM user.

Add a policy to the data engineer's IAM user that includes the sts:AssumeRole action for the AWS Glue and SageMaker service principals in the trust policy.

Add the AmazonSageMakerFullAccess managed policy to the data engineer's IAM user.

Add a policy to the data engineer's IAM user that allows the sts:AddAssociation action for the AWS Glue and SageMaker service principals in the trust policy.