Unapproved changes were previously made to a company’s Amazon S3 bucket. A security engineer configured AWS Config to record configuration changes made to the company’s S3 buckets. The engineer discovers there are S3 configuration changes being made, but no Amazon SNS notifications are being sent. The engineer has already checked the configuration of the SNS topic and has confirmed the configuration is valid.
Which combination of steps should the security engineer take to resolve the issue? (Select TWO.)
A . Configure the S3 bucket ACLs to allow AWS Config to record changes to the buckets.
B . Configure policies attached to S3 buckets to allow AWS Config to record changes to the buckets.
C . Attach the AmazonS3ReadOnryAccess managed policy to the IAM user.
D . Verify the security engineer’s IAM user has an attached policy that allows all AWS Config actions.
E . Assign the AWSConfigRole managed policy to the AWS Config role