Practice Test 2 | AWS Certified Solutions Architect Associate | SAA-C03 | Dumps | Mock Test
An EC2 Instance hosts a Java-based application that accesses a DynamoDB table. This EC2 Instance is currently serving production users. What would be a secure way for the EC2 Instance to access the DynamoDB table?
A. Use IAM Roles with permissions to interact with DynamoDB and assign it to the EC2 Instance.
B. Use KMS Keys with the right permissions to interact with DynamoDB and assign it to the EC2 Instance.
C. Use IAM Access Keys with the right permissions to interact with DynamoDB and assign it to the EC2 Instance.
D. Use IAM Access Groups with the right permissions to interact with DynamoDB and assign it to the EC2 Instance.
Explanation:
Correct Answer – A
To ensure secure access to AWS resources from EC2 Instances, always assign a role to the EC2 Instance.
For more information on IAM Roles, please refer to the below URL:
An IAM role is similar to a user; it is an AWS identity with permission policies that determine what the identity can and cannot do in AWS. However, instead of being uniquely associated with one person, a role is intended to be assumable by anyone who needs it. Also, an IAM role does not have standard long-term credentials (password or access keys) associated with it. Instead, if a user assumes a role, temporary security credentials are created dynamically and provided to the user.
You can use roles to delegate access to users, applications, or services that normally don’t have access to your AWS resources.
Note:
You can attach IAM role to the existing EC2 instance. To know more, please visit the following URL:
Comments are closed, but trackbacks and pingbacks are open.