AWS Certified Data Engineer – Associate (DEA-C01) — Question 188

A company has an Amazon Redshift data warehouse that users access by using a variety of IAM roles. More than 100 users access the data warehouse every day.

The company wants to control user access to the objects based on each user's job role, permissions, and how sensitive the data is.

Which solution will meet these requirements?

Answer options

• A. Use the role-based access control (RBAC) feature of Amazon Redshift.
• B. Use the row-level security (RLS) feature of Amazon Redshift.
• C. Use the column-level security (CLS) feature of Amazon Redshift.
• D. Use dynamic data masking policies in Amazon Redshift.

Correct answer: A

Explanation

The correct answer is A because the role-based access control (RBAC) feature allows for fine-grained access management based on user roles, which aligns with the company's requirement to control access based on job roles and permissions. Options B, C, and D focus on specific data access levels or masking, which do not provide the comprehensive role-based control needed for managing access for a diverse user base.