AWS Certified Cloud Practitioner

Get started today

Ultimate access to all questions.

Explanation:

Statement 1 allows ListBucket on the bucket itself. Statement 2 allows GetObject and PutObject on objects inside it. Together they grant list + read + write on finance-reports.

Explanation:

Statement 1 allows ListBucket on the bucket itself. Statement 2 allows GetObject and PutObject on objects inside it. Together they grant list + read + write on finance-reports.

Comments (0)

No comments yet.

IAM Policy Question 1

Review the following IAM policy. What actions will the attached user be able to perform?

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": "s3:ListBucket",
      "Resource": "arn:aws:s3:::finance-reports"
    },
    {
      "Effect": "Allow",
      "Action": ["s3:GetObject", "s3:PutObject"],
      "Resource": "arn:aws:s3:::finance-reports/*"
    }
  ]
}

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": "s3:ListBucket",
      "Resource": "arn:aws:s3:::finance-reports"
    },
    {
      "Effect": "Allow",
      "Action": ["s3:GetObject", "s3:PutObject"],
      "Resource": "arn:aws:s3:::finance-reports/*"
    }
  ]
}

Real Exam

Community

RRitesh

Last updated: May 8, 2026 at 17:59

List bucket contents, read and write objects in finance-reports

100.0%

Full S3 access to all buckets

0.0%

Only read objects from finance-reports

Create and delete S3 buckets