AWS Certified SysOps Administrator SOA-C01 – Question489 - AWS Certified SysOps Administrator SOA-C01

Is it possible to create an S3 bucket accessible only by a certain IAM user using policies in a Cloud-Formation template?

A. Yes, all these resources can be created using a CloudFormation template
B. S3 is not supported by CloudFormation.
C. No, you can only create the S3 bucket but not the IAM user.
D. No, in the same template you can only create the S3 bucket and the relative policy.

Correct Answer: A

Explanation:

Explanation: With AWS Identity and Access Management (IAM), you can create IAM users to control who has access to which resources in your AWS account. You can use IAM with AWS CloudFormation to control what AWS CloudFormation actions users can perform, such as view stack templates, create stacks, or delete stacks. In addition to AWS CloudFormation actions, you can manage what AWS services and resources are available to each user. Reference:
http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using…