Which solution will meet these requirements?

By:
In: SAA-C03
Tagged:
With: 1 Comment
A company collects 10 GB of telemetry data daily from various machines.The company stores the data in an Amazon S3 bucket in a source data account.The company has hired several consulting agencies to use this data for analysis.Each agency needs read access to the data for its analysts.The company must share the data from the source data account by choosing a solution that maximizes security and operational efficiency.

Which solution will meet these requirements?

Configure S3 global tables to replicate data for each agency.

Make the S3 bucket public for a limited time. Inform only the agencies.

Configure cross-account access for the S3 bucket to the accounts that the agencies own.

Set up an IAM user for each analyst in the source data account. Grant each user access to the S3 bucket.

Explanations:

S3 global tables do not exist; this option is invalid. S3 is primarily used for object storage and does not support global tables like databases do.

Making the S3 bucket public poses significant security risks, as it allows unrestricted access to the data for anyone with the bucket URL, making it unsuitable for controlled data sharing.

Configuring cross-account access allows the company to grant read permissions to specific agency accounts while maintaining control over the data, maximizing security and operational efficiency.

Creating an IAM user for each analyst would result in high management overhead, complicating access management and scalability. It is more efficient to manage access through cross-account roles.

2025-10-16

1 Comment

  1. Frances
    Author

    I suspect that the answer is:
    Configure cross-account access for the S3 bucket to the accounts that the agencies own.

Leave a Reply

Your email address will not be published. Required fields are marked *

15 − fifteen =