AWS Certified Developer – Associate (DVA-C02) — Question 86

A team is developing an application that is deployed on Amazon EC2 instances. During testing, the team receives an error. The EC2 instances are unable to access an Amazon S3 bucket.

Which steps should the team take to troubleshoot this issue? (Choose two.)

Answer options

• A. Check whether the policy that is assigned to the IAM role that is attached to the EC2 instances grants access to Amazon S3.
• B. Check the S3 bucket policy to validate the access permissions for the S3 bucket.
• C. Check whether the policy that is assigned to the IAM user that is attached to the EC2 instances grants access to Amazon S3.
• D. Check the S3 Lifecycle policy to validate the permissions that are assigned to the S3 bucket.
• E. Check the security groups that are assigned to the EC2 instances. Make sure that a rule is not blocking the access to Amazon S3.

Correct answer: A, B

Explanation

The correct answers are A and B because checking the IAM role policy ensures that the EC2 instances have the necessary permissions to access S3, while verifying the S3 bucket policy confirms that access is allowed from the EC2 instances. Options C, D, and E are incorrect as they either pertain to IAM users instead of roles, focus on lifecycle policies which do not affect access, or relate to security group rules that are not relevant for S3 access.