Managers in a company need access to the human resources database that runs on Amazon Redshift, to run reports about their employees. Managers must only see information about their direct reports.
Which technique should be used to address this requirement with Amazon Redshift?
A . Define an IAM group for each employee as an IAM user in that group and use that to limit the access.
B . Use Amazon Redshift snapshot to create one cluster per manager. Allow the managers to access only their designated clusters.
C . Define a key for each manager in AWS KMS and encrypt the data for their employees with their private keys.
D . Define a view that uses the employee’s manager name to filter the records based on current user names.
Answer: D
Explanation:
https://www.intermix.io/blog/iam-to-generate-temporary-amazon-redshift-passwords/
https://docs.aws.amazon.com/redshift/latest/mgmt/generating-iam-credentials-steps.html
Leave a Reply