Big Halloween Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

Discussions
  1. Home
  2. Discussions
  3. Amazon Web Services
  4. AWS Solutions Architect Associate
  5. SAA-C03 Discussions
  6. SAA-C03 Exam Topic 14 Question 106 Discussion
 Amazon Web Services Discussions
Exam SAA-C03 All Questions
Exam SAA-C03 All Questions

View all questions & answers for the SAA-C03 exam

Go to Exam

Amazon Web Services AWS Solutions Architect Associate SAA-C03 Question # 106 Topic 14 Discussion

SAA-C03 Exam Topic 14 Question 106 Discussion:
Question #: 106
Topic #: 14

A company hosts its application on several Amazon EC2 instances inside a VPC. The company creates a dedicated Amazon S3 bucket for each customer to store their relevant information in Amazon S3.

The company wants to ensure that the application running on EC2 instances can securely access only the S3 buckets that belong to the company's AWS account.

Which solution will meet these requirements with the LEAST operational overhead?
A.

Create a gateway endpoint for Amazon S3 that is attached to the VPC Update the IAM instance profile policy to provide access to only the specific buckets that the application needs.

B.

Create a NAT gateway in a public subnet with a security group that allows access to only Amazon S3 Update the route tables to use the NAT Gateway.

C.

Create a gateway endpoint for Amazon S3 that is attached to the VPC Update the IAM instance profile policy with a Deny action and the following condition key:

D.

Create a NAT Gateway in a public subnet Update route tables to use the NAT Gateway Assign bucket policies for all buckets with a Deny action and the following condition key:

Get Premium SAA-C03 Questions
Actual exam question for Amazon Web Services SAA-C03 exam by Vale42880 at Oct 27, 2025, 12:00:25 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit