Exam4Training

What changes should the Engineer make to achieve a policy of least permission?

A company is reviewing its IAM policies. One policy written by the DevOps Engineer has been flagged as too permissive. The policy is used by an AWS Lambda function that issues a stop command to Amazon EC2 instances tagged with Environment: Nonproduction over the weekend.

The current policy is:

What changes should the Engineer make to achieve a policy of least permission? (Select THREE.)

A)

B)

C)

D)

E)

F)

A . Option A
B. Option B
C. Option C
D. Option D
E. Option E
F. Option F

Answer: B,D,E

Explanation:

https://docs.aws.amazon.com/ja_jp/IAM/latest/UserGuide/reference_policies_variables.htm l https://aws.amazon.com/jp/premiumsupport/knowledge-center/restrict-ec2-iam/

Latest DOP-C01 Dumps Valid Version with 188 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Exit mobile version