Home › Forums › AWS › AWS Certified Solutions Architect Professional › Practice exam & IAM Bucket Policy › Reply To: Practice exam & IAM Bucket Policy
-
Hello Claude,
Thanks for the feedback.
I understand that the wording of the choices may be confusing (usually aimed for Professional level questions). Specially the option “An IAM bucket policy that allows the EC2 role to access S3 objects.”
But if we looked at all the choices, they are all using the IAM console, not the S3 console, to create policies. This particular option (“An IAM bucket policy that allows the EC2 role to access S3 objects.”) implies that on the IAM console, you create a bucket policy which is impossible because a bucket policy is only done on the S3 web console (or via S3 API SDK) and not on the IAM Console.
The option is incorrect because it implies you use IAM console (or IAM API) to create a bucket policy.
Hope this helps.
Regards,
Kenneth Samonte @ Tutorials Dojo
- This reply was modified 4 years, 3 months ago by TutorialsDojo-Support.