Q42 — AWS SAA-C03 Ch.1
Question 42 of 65 | ← Chapter 1
Q42. A company uses an Amazon S3 bucket to store static images for its website. The company configured permissions to allow access to Amazon S3 objects by privileged users only. What should a solutions architect do to protect against data loss? (Select TWO.)
- A. Enable versioning on the 53 bucket. ✓
- B. Enable access logging on the S3 bucket.
- C. Enable server-side encryption on the 53 bucket.
- D. Configure an 53 lifecycle rule to transition objects to Amazon 53 Glacier
- E. Use MEA Delete to require multi-factor authentication to delete an object. ✓
Correct Answer: A. Enable versioning on the 53 bucket., E. Use MEA Delete to require multi-factor authentication to delete an object.
Explanation
A. Enable versioning on the S3 bucket: Enabling versioning allows for the preservation of a complete version history of each object in the bucket. This ensures that if a file is accidentally overwritten or deleted, previous versions can be restored, preventing data loss.E. Use MFA Delete to require multi-factor authentication to delete an object: Enabling MFA Delete adds an extra layer of security by requiring multi-factor authentication (MFA) before an object can be permanently deleted from the S3 bucket. This helps prevent accidental or unauthorized deletions, reducing the risk of data loss.By implementing both versioning and MFA Delete, the company can protect its static images from accidental deletion or overwriting while ensuring that only privileged users with MFA can perform permanent deletions.a .在S3