A company mandates that an Amazon S3 gateway endpoint must allow traffic to trusted buckets only
Which method should a solutions architect implement to meet this requirement?
A . Create a bucket policy for each of the company’s trusted S3 buckets that allows traffic only from the company’s trusted VPCs
B . Create a bucket policy for each of the company’s trusted S3 buckets that allows traffic only from the company’s S3 gateway endpoint IDs
C . Create an S3 endpoint policy for each of the company’s S3 gateway endpoints that blocks access from any VPC other than the company’s trusted VPCs
D . Create an S3 endpoint policy for each of the company’s S3 gateway endpoints that provides access to the Amazon Resource Name (ARN) of the trusted S3 buckets
Answer: D
Leave a Reply