AWS - S3 Fundamentals
You want to allow a specific AWS account to read objects but deny all others. Which bucket policy snippet achieves this?
You want to allow a specific AWS account to read objects but deny all others. Which bucket policy snippet achieves this?
hard📝 Application Q8 of 15
Step-by-Step Solution
Solution:
Step 1: Identify the correct Principal
Allow only the specific AWS account with ARN ending 111122223333.Step 2: Confirm Action and Resource
Action is GetObject on all objects in the bucket, Resource includes /*.Final Answer:
Allow specific AWS account read access -> Option BQuick Check:
Allow specific AWS account = B [OK]
Quick Trick: Use Principal with specific AWS account ARN to restrict access [OK]
Common Mistakes:
- Using Principal "*" for all users
- Denying the correct account
- Allowing wrong account ARN
Master "S3 Fundamentals" in AWS
Want More Practice?
15+ quiz questions · All difficulty levels · Free
Free Signup - Practice All QuestionsMore AWS Quizzes