Home › Forums › AWS › AWS Certified SysOps Administrator Associate › Questions | Storage and Data Management
-
Hello sir,
Please check out this question and explain me why my choice is not correct.
I didn’t find any reference in your question about root account (just Junior DevOps Engineer) and also I didn’t find any information that for enable Versioning and MFA delete features by another users, you must be root account. This question is NOT clear for me.
As you can see in the web link below, when you use the account root user, it affects only the root user credentials and the question is about Junior DevOps Engineer.
Please let me know
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_mfa.html
-
Hello fabiano-2,
Please note that the MFA that you usually apply to a root user is different from MFA delete.
The MFA delete is an Amazon S3 feature that you can optionally configure to ensure that objects in your S3 bucket won’t be accidentally deleted. It works by requiring you to provide additional authentication when you’re permanently deleting an object version or changing the versioning state of your bucket.
Here’s a snippet from the AWS documentation:
“The bucket owner, the AWS account that created the bucket (root account), and all authorized IAM users can enable versioning, but only the bucket owner (root account) can enable MFA Delete.”
Reference:
https://docs.aws.amazon.com/AmazonS3/latest/dev/Versioning.html#MultiFactorAuthenticationDelete
https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingMFADelete.html
Regards,
Carlo
- This reply was modified 4 years ago by Carlo-TutorialsDojo.
- This reply was modified 4 years ago by wayne-c.
- This reply was modified 4 years ago by Carlo-TutorialsDojo.
- This reply was modified 4 years ago by Carlo-TutorialsDojo.
- This reply was modified 4 years ago by wayne-c.
Log in to reply.