Which solution will meet these requirements with the LEAST operational overhead?

By:
In: SAA-C02
Tagged:
With: 1 Comment
A company has two AWS accounts in the same AWS Region.One account is a publisher account, and the other account is a subscriber account.Each account has its own Amazon S3 bucket.An application puts media objects into the publisher account’s S3 bucket.The objects are encrypted with server-side encryption with customer-provided encryption keys (SSE-C).The company needs a solution that will automatically copy the objects to the subscriber’s account’s S3 bucket.

Which solution will meet these requirements with the LEAST operational overhead?

Enable S3 Versioning on the publisher account’s S3 bucket. Configure S3 Same-Region Replication of the objects to the subscriber account’s S3 bucket.

Create an AWS Lambda function that is invoked when objects are published in the publisher account’s S3 bucket. Configure the Lambda function to copy the objects to the subscriber account’s S3 bucket.

Configure Amazon EventBridge (Amazon CloudWatch Events) to invoke an AWS Lambda function when objects are published in the publisher account’s S3 bucket. Configure the Lambda function to copy the objects to the subscriber account’s S3 bucket.

Configure Amazon EventBridge (Amazon CloudWatch Events) to publish Amazon Simple Notification Service (Amazon SNS) notifications when objects are published in the publisher account’s S3 bucket. When notifications are received, use the S3 console to copy the objects to the subscriber account’s S3 bucket.

Explanations:

S3 Same-Region Replication (SRR) allows automatic copying of objects between S3 buckets in the same region. With SSE-C, the publisher’s bucket can replicate objects to the subscriber’s bucket without manual intervention. This solution is fully managed, providing the least operational overhead.

Using an AWS Lambda function introduces additional complexity and operational overhead. It requires manually managing triggers, encryption keys, and handling object copying, which makes it less efficient than SRR.

Using EventBridge with Lambda is an overcomplicated solution. While it could work, it introduces unnecessary overhead by invoking Lambda functions to copy objects. SRR is more straightforward and requires less operational management.

This solution relies on manual steps (using the S3 console to copy objects). It’s not automated and introduces unnecessary operational overhead, which contradicts the requirement for the least overhead.

2025-09-30

1 Comment

  1. Douglas
    Author

    I value that the answer is:
    Enable S3 Versioning on the publisher account’s S3 bucket. Configure S3 Same-Region Replication of the objects to the subscriber account’s S3 bucket.

Leave a Reply

Your email address will not be published. Required fields are marked *

ten + 17 =