Q5 — AWS SAA-C03 Ch.3

Question 5 of 65 | ← Chapter 3

Q135. A company needs to store data in Amazon S3 and must prevent the data from being changed. The company wants new objects that are uploaded to Amazon S3 to remain unchangeable for a nonspecific amount of time until the company decides to modify the objects. Only specific users in the company's AWS account can have the ability to delete the objects.What should a solutions architect do to meet these requirements?

Correct Answer: D. Create an S3 bucket with S3 Object Lock enabled. Enable versioning. Add a legal hold to the objects.Add the s3:PutObjectLegalHold permission to the IAM policies of users who need to delete the objects.