AWS Certified SysOps Administrator – Associate — Question 402

A SysOps administrator must configure Amazon S3 to host a simple nonproduction webpage. The SysOps administrator has created an empty S3 bucket from the
AWS Management Console. The S3 bucket has the default configuration in place.
Which combination of actions should the SysOps administrator take to complete this process? (Choose two.)

Answer options

• A. Configure the S3 bucket by using the "Redirect requests for an object" functionality to point to the bucket root URL.
• B. Turn off the "Block all public access" setting. Allow public access by using a bucket ACL that contains <Permission>WEBSITE</Permission>.
• C. Turn off the "Block all public access" setting. Allow public access by using a bucket ACL that allows access to the AuthenticatedUsers grantee.
• D. Turn off the "Block all public access" setting. Set a bucket policy that allows "Principal": the s3:GetObject action.
• E. Create an index.html document. Configure static website hosting, and upload the index document to the S3 bucket.

Correct answer: D, E

Explanation

To host a static website on Amazon S3, you must enable static website hosting and specify an index document, which is then uploaded to the bucket. Additionally, because default S3 settings block all public access, you must disable the 'Block all public access' setting and apply a bucket policy allowing the s3:GetObject action to anonymous users (Principal: '*') so that visitors can view the webpage. Using ACLs or redirect configurations will not correctly grant public read access to the website objects.