What can the DevOps engineers do to prevent this from happening again?

SAA-C03 0 Comments

A company has 3 DevOps engineers that are handling its software development and infrastructure management processes. One of the engineers accidentally deleted a file hosted in Amazon S3 which has caused disruption of service.

What can the DevOps engineers do to prevent this from happening again?
A . Set up a signed URL for all users.
B . Create an IAM bucket policy that disables delete operation.
C . Use S3 Infrequently Accessed storage to store the data.
D . Enable S3 Versioning and Multi-Factor Authentication Delete on the bucket.

Answer: D

Explanation:

To avoid accidental deletion in Amazon S3 bucket, you can:

– Enable Versioning

– Enable MFA (Multi-Factor Authentication) Delete

Versioning is a means of keeping multiple variants of an object in the same bucket. You can use versioning to preserve, retrieve, and restore every version of every object stored in your Amazon S3 bucket. With versioning, you can easily recover from both unintended user actions and application failures.

If the MFA (Multi-Factor Authentication) Delete is enabled, it requires additional authentication for either of the following operations:

– Change the versioning state of your bucket

– Permanently delete an object version

Using S3 Infrequently Accessed storage to store the data is incorrect. Switching your storage class to S3 Infrequent Access won’t help mitigate accidental deletions.

Setting up a signed URL for all users is incorrect. Signed URLs give you more control over access to your content, so this feature deals more on accessing rather than deletion.

Creating an IAM bucket policy that disables delete operation is incorrect. If you create a bucket policy preventing deletion, other users won’t be able to delete objects that should be deleted. You only want to

prevent accidental deletion, not disable the action itself.

Explanation:

Reference:

http://docs.aws.amazon.com/AmazonS3/latest/dev/Versioning.html

Check out this Amazon S3 Cheat Sheet:

https://tutorialsdojo.com/amazon-s3/

Latest SAA-C03 Dumps Valid Version with 400 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download SAA-C03 PDF     SAA-C03 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments