Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
Microsoft
VMware
Avaya
SAP
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS-Certified-Big-Data-Specialty

Free Amazon AWS-Certified-Big-Data-Specialty Exam Braindumps (page: 19)

Page 19 of 124
PDF with 492 Questions

What type of S3 Access Control supports AWS Account-Level Control as well as User-Level control?

  1. Bucket Policies
  2. IAM Policies
  3. ACLs
  4. All of the three answers above

Answer(s): A

Explanation:

Bucket Policies allow you to create conditional rules for managing access to your buckets and files. With bucket policies, you can also define security rules that apply to more than one file, including all files or a subset of files within a bucket.


Reference:

http://docs.aws.amazon.com/AmazonS3/latest/dev/using-iam-policies.html



In Amazon S3, which of the following security tokens is required to be passed in the header when a user is signing a request using temporary security credentials?

  1. x-amz-temporary-token
  2. x-amz-temporary-security-token
  3. x-amz-temp-secure-token
  4. x-amz-security-token

Answer(s): D

Explanation:

If you are signing your request using temporary security credentials, you must include the corresponding security token in your request by adding the x-amz-security-token header.
When you obtain temporary security credentials using the AWS Security Token Service API, the response includes temporary security credentials and a session token. You provide the session token value in the x-amz-security-token header when you send requests to Amazon S3.


Reference:

http://docs.aws.amazon.com/AmazonS3/latest/dev/RESTAuthentication.html



Is it required to send both the Access Key and the Secret Access key in the REST request to Amazon S3?

  1. Yes
  2. Yes, it is required only for the IAM users.
  3. No
  4. Yes, it is required only for the root accounts.

Answer(s): C

Explanation:

No, it is not required to send both the Access key and the Secret Access key. When a user is making a REST URL, the user is required to send only the Access key and a signature. The signature is created with the Secret Access key and request contents. The user does not need to explicitly send the Secret Access key. Amazon S3 uses the access key ID to look up your secret access key.


Reference:

http://docs.aws.amazon.com/AmazonS3/latest/dev/S3_Authentication2.html



Can temporary security credential validity be specified by a user when it has been created using S3 SDK?

  1. Yes
  2. Yes, this is possible but only when generating credentials for an IAM user.
  3. Yes, this is possible but only when generating credentials for a root account user.
  4. No

Answer(s): B

Explanation:

An IAM user or an AWS Account can request temporary security credentials using AWS SDK for Java and use them to access Amazon S3. These credentials expire after the session duration. By default, the session duration is one hour. If you use IAM user credentials, you can specify duration, between 1 and 36 hours, when requesting the temporary security credentials.


Reference:

http://docs.aws.amazon.com/AmazonS3/latest/dev/AuthUsingTempSessionTokenJava.html






Post your Comments and Discuss Amazon AWS-Certified-Big-Data-Specialty exam prep with other Community members:

AWS-Certified-Big-Data-Specialty Exam Discussions & Posts