A sysadmin has created the below mentioned policy on an S3 bucket named cloudacademy. The bucket has
both AWS.jpg and index.html objects. What does this policy define?
A.
It will make all the objects as well as the bucket public
B.
It will throw an error for the wrong action and does not allow to save the policy
C.
It will make the AWS.jpg object as public
D.
It will make the AWS.jpg as well as the cloudacademy bucket as public
It should be D. The actions listed are valid.
0
3
ListBucket doesn’t work at object level.
4
0
B –> You must use two different Amazon Resource Names (ARNs) to specify bucket-level and object-level permissions.
https://aws.amazon.com/blogs/security/writing-iam-policies-how-to-grant-access-to-an-amazon-s3-bucket/
10
0
B is correct, I got an error message:
—
Error
Action does not apply to any resource(s) in statement
After I removed “s3:ListBucket”, I was able to apply the policy.
6
0