A marketing company is storing CSV files in an Amazon S3 bucket for statistical analysis. An application on an Amazon EC2 instance needs permission to efficiently process the CSV data stored in the S3 bucket.
Which action will MOST securely grant the EC2 instance access to the S3 bucket?
A . Attach a resource-based policy to the S3 bucket
B . Create an IAM user for the application with specific permissions to the S3 bucket
C . Associate an IAM role with least privilege permissions to the EC2 instance profile
D . Store AWS credentials directly on the EC2 instance for applications on the instance to use for API calls
Answer: B
Explanation:
https://docs.aws.amazon.com/dms/latest/userguide/CHAP_Target.S3.html
Latest SAA-C02 Dumps Valid Version with 230 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund