Home › Forums › AWS › AWS Certified Security – Specialty › AWS Certified Security – Specialty Practice Exams 2020 – Question 56 – KMS root › Reply To: AWS Certified Security – Specialty Practice Exams 2020 – Question 56 – KMS root
-
These are all the possible answers:
The kms:Encrypt permission is missing from the IAM policy of the developers.
The AWS CLI S3 commands perform a multipart upload when the file is large.
There is an attached inline policy in the developers’ IAM permissions that restricts them from uploading a file with a size of 10 GB or more.
The IAM policy of the developer does not include the kms:Decrypt permission.
10 GB is the maximum size that can be encrypted in KMS.