{"id":328,"date":"2021-01-08T06:34:28","date_gmt":"2021-01-08T06:34:28","guid":{"rendered":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/aws-certified-sysops-administrator-soa-c01-question321\/"},"modified":"2021-01-08T06:34:28","modified_gmt":"2021-01-08T06:34:28","slug":"aws-certified-sysops-administrator-soa-c01-question321","status":"publish","type":"post","link":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/aws-certified-sysops-administrator-soa-c01-question321\/","title":{"rendered":"AWS Certified SysOps Administrator SOA-C01 &#8211; Question321"},"content":{"rendered":"<div class=\"question\">You have private video content in S3 that you want to serve to subscribed users on the Internet. User IDs, credentials, and subscriptions are stored in an Amazon RDS database. Which configuration will allow you to securely serve private content to your users? <br \/><strong><br \/>A.<\/strong> Generate pre-signed URLs for each user as they request access to protected S3 content <br \/><strong>B.<\/strong> Create an IAM user for each subscribed user and assign the GetObject permission to each IAM user <br \/><strong>C.<\/strong> Create an S3 bucket policy that limits access to your private content to only your subscribed users&#039; credentials <br \/><strong>D.<\/strong> Create a CloudFront Origin Identity user for your subscribed users and assign the GetObject permission to this user<\/div>\n<p><\/p>\n<style> .hidden-div{ display:none } <\/style>\n<p>\t\t\t\t\t\t\t<button onclick=\"getElementById('hidden-div').style.display = 'block'\"> Show Answer <\/button> <button onclick=\"getElementById('hidden-div').style.display = 'none'\">Hide Answer<\/button><\/p>\n<div class=\"hidden-div\" id=\"hidden-div\"><span style=\"\"><\/p>\n<div class=\"answer\">Correct Answer: <strong>A<\/strong><\/div>\n<p><strong>Explanation:<\/strong> <\/p>\n<div class=\"explanation\">\nExplanation:<br \/>\n \u201cYou can optionally secure the content in your Amazon S3 bucket so users can access it through CloudFront but cannot access it directly by using Amazon S3 URLs. This prevents anyone from bypassing CloudFront and using the Amazon S3 URL to get content that you want to restrict access to. This step isn\u2019t required to use signed URLs, but we recommend it.\u201d<br \/>\nReference:<br \/>\n<a href=\"http:\/\/docs.aws.amazon.com\/AmazonCloudFront\/latest\/DeveloperGuide\/PrivateContent.html\" title=\"External link\" rel=\"nofollow noopener\" target=\"_blank\">http:\/\/docs.aws.amazon.com\/AmazonCloudFront\/latest\/DeveloperGuide\/P&#8230;<\/a><\/div>\n<p><\/strong><\/span> <\/div>\n","protected":false},"excerpt":{"rendered":"<p>You have private video content in S3 that you want to serve to subscribed users on the Internet. User IDs, credentials, and subscriptions are stored in an Amazon RDS database. Which configuration will allow you to securely serve private content to your users? A. Generate pre-signed URLs for each user as they request access to [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[3,324],"class_list":["post-328","post","type-post","status-publish","format-standard","hentry","category-aws-certified-sysops-administrator-soa-c01","tag-aws-certified-sysops-administrator-soa-c01","tag-question-321"],"_links":{"self":[{"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/posts\/328","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/comments?post=328"}],"version-history":[{"count":0,"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/posts\/328\/revisions"}],"wp:attachment":[{"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/media?parent=328"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/categories?post=328"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/tags?post=328"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}