AWS Certified Data Analytics – Specialty — Question 159

An advertising company has a data lake that is built on Amazon S3. The company uses AWS Glue Data Catalog to maintain the metadata. The data lake is several years old and its overall size has increased exponentially as additional data sources and metadata are stored in the data lake. The data lake administrator wants to implement a mechanism to simplify permissions management between Amazon S3 and the Data Catalog to keep them in sync.
Which solution will simplify permissions management with minimal development effort?

Answer options

• A. Set AWS Identity and Access Management (IAM) permissions for AWS Glue
• B. Use AWS Lake Formation permissions
• C. Manage AWS Glue and S3 permissions by using bucket policies
• D. Use Amazon Cognito user pools

Correct answer: B

Explanation

The correct answer is B because AWS Lake Formation provides a straightforward method for managing and enforcing permissions across data lakes, specifically for Amazon S3 and AWS Glue. The other options, while potentially useful, either require more complex configurations or do not offer the same level of integration and simplicity as AWS Lake Formation.