AWS Certified Cloud Practitioner — Question 103

A user is storing objects in Amazon S3. The user needs to restrict access to the objects to meet compliance obligations.
What should the user do to meet this requirement?

Answer options

• A. Use AWS Secrets Manager.
• B. Tag the objects in the S3 bucket.
• C. Use security groups.
• D. Use network ACLs.

Correct answer: B

Explanation

The correct answer is B because tagging objects in the S3 bucket allows for the implementation of access policies based on those tags, which can help meet compliance needs. Options A, C, and D do not provide direct methods for restricting access to S3 objects specifically for compliance purposes.