AWS Certified Solutions Architect – Professional — Question 235

A solutions architect is designing a publicly accessible web application that is on an Amazon CloudFront distribution with an Amazon S3 website endpoint as the origin. When the solution is deployed, the website returns an Error 403: Access Denied message.
Which steps should the solutions architect take to correct the issue? (Choose two.)

Answer options

• A. Remove the S3 block public access option from the S3 bucket.
• B. Remove the requester pays option from the S3 bucket.
• C. Remove the origin access identity (OAI) from the CloudFront distribution.
• D. Change the storage class from S3 Standard to S3 One Zone-Infrequent Access (S3 One Zone-IA).
• E. Disable S3 object versioning.

Correct answer: A, B

Explanation

The correct steps to resolve the Error 403: Access Denied issue involve removing the S3 block public access option (A) and the requester pays option (B), as both can restrict public access to the S3 bucket. The other options do not address the access permissions necessary for public access to the web application.