A company is working with an external vendor that requires write access to the company's Amazon Simple Queue Service (Amazon SQS) queue. The vendor has its own AWS account.
What should a solutions architect do to implement least privilege access?

A. Update the permission policy on the SQS queue to give write access to the vendor's AWS account.

B. Create an IAM user with write access to the SQS queue and share the credentials for the IAM user.

C. Update AWS Resource Access Manager to provide write access to the SQS queue from the vendor's AWS account.

D. Create a cross-account role with access to all SQS queues and use the vendor's AWS account in the trust document for the role.








 

Suggested Answer: D

Community Answer: A




This question is in SAA-C02 AWS Certified Solutions Architect – Associate Exam
For getting AWS Certified Solutions Architect – Associate Certificate




Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Amazon.
Trademarks, certification & product names are used for reference only and belong to Amazon.
The website does not contain actual questions and answers from Amazon's Certification Exam.