AWS Certified Solutions Architect – Associate (SAA-C03) — Question 807

A global company runs its workloads on AWS. The company's application uses Amazon S3 buckets across AWS Regions for sensitive data storage and analysis. The company stores millions of objects in multiple S3 buckets daily. The company wants to identify all S3 buckets that are not versioning-enabled.

Which solution will meet these requirements?

Answer options

• B. Use Amazon S3 Storage Lens to identify all S3 buckets that are not versioning-enabled across Regions.
• C. Enable IAM Access Analyzer for S3 to identify all S3 buckets that are not versioning-enabled across Regions.
• D. Create an S3 Multi-Region Access Point to identify all S3 buckets that are not versioning-enabled across Regions.

Correct answer: B

Explanation

Amazon S3 Storage Lens provides centralized, organization-wide visibility into object storage usage and activity trends, including metrics on bucket configurations such as versioning status. IAM Access Analyzer is designed to identify public or cross-account resource access, not bucket configuration details like versioning. S3 Multi-Region Access Points are used to route application traffic across multiple buckets in different Regions rather than reporting on bucket properties.