Summer Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: pass65

Discussions
  1. Home
  2. Discussions
  3. Amazon Web Services
  4. AWS Certified Professional
  5. DOP-C02 Discussions
  6. DOP-C02 Exam Topic 1 Question 12 Discussion
 Amazon Web Services Discussions
Exam DOP-C02 All Questions
Exam DOP-C02 All Questions

View all questions & answers for the DOP-C02 exam

Go to Exam

Amazon Web Services AWS Certified Professional DOP-C02 Question # 12 Topic 1 Discussion

DOP-C02 Exam Topic 1 Question 12 Discussion:
Question #: 12
Topic #: 1

A company is using an AWS CodeBuild project to build and package an application. The packages are copied to a shared Amazon S3 bucket before being deployed across multiple AWS accounts.

The buildspec.yml file contains the following:

DOP-C02 Question 12

The DevOps engineer has noticed that anybody with an AWS account is able to download the artifacts.

What steps should the DevOps engineer take to stop this?
A.

Modify the post_build command to use --acl public-read and configure a bucket policy that grants read access to the relevant AWS accounts only.

B.

Configure a default ACL for the S3 bucket that defines the set of authenticated users as the relevant AWS accounts only and grants read-only access.

C.

Create an S3 bucket policy that grants read access to the relevant AWS accounts and denies read access to the principal “*”.

D.

Modify the post_build command to remove --acl authenticated-read and configure a bucket policy that allows read access to the relevant AWS accounts only.

Get Premium DOP-C02 Questions
Actual exam question for Amazon Web Services DOP-C02 exam by Orin81881 at Jul 2, 2025, 5:54:46 PM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit