EC2 instances must access an S3 bucket securely without hardcoding credentials into application code. What is the best approach?

AStore access keys in environment variables on the instance

BEmbed access keys in the application source code

CAttach an IAM role with S3 permissions to the EC2 instance

DUse an S3 bucket policy granting public read access

More Design Secure Architectures Questions

60 questions

Full AWS Certified Solutions Architect - Associate Practice Test

All topics covered

All AWS Certified Solutions Architect - Associate Questions

Browse by topic

Related Questions

A Lambda function needs to read from DynamoDB and write to S3. What is the correct way to grant thes...

easy

What is the simplest way to ensure all objects uploaded to an S3 bucket are encrypted at rest?...

easy

What is AWS Key Management Service (AWS KMS) primarily used for?...

easy

Which AWS service stores database credentials and API keys securely and can rotate them automaticall...

medium

On-premises Active Directory users need to sign in to the AWS Management Console using their existin...

medium

View all Design Secure Architectures questions

Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy

Discussion

Be the first to share your understanding of this concept

⚠️ Discussion is for concept clarification only. Do not share or request actual exam questions or answers.