AWS Certified SysOps Administrator – Associate — Question 433

A SysOps administrator wants to protect objects in an Amazon S3 bucket from accidental overwrite and deletion. Noncurrent objects must be kept for 90 days and then must be permanently deleted. Objects must reside within the same AWS Region as the original S3 bucket.
Which solution meets these requirements?

Answer options

• A. Create an Amazon Data Lifecycle Manager (Amazon DLM) lifecycle policy for the S3 bucket. Add a rule to the lifecycle policy to delete noncurrent objects after 90 days.
• B. Create an AWS Backup policy for the S3 bucket. Create a backup rule that includes a lifecycle to expire noncurrent objects after 90 days.
• C. Enable S3 Cross-Region Replication on the S3 bucket. Create an S3 Lifecycle policy for the bucket to expire noncurrent objects after 90 days.
• D. Enable S3 Versioning on the S3 bucket. Create an S3 Lifecycle policy for the bucket to expire noncurrent objects after 90 days.

Correct answer: D

Explanation

Enabling S3 Versioning is the standard method to protect S3 objects from accidental overwrite or deletion by keeping multiple versions of an object in the same region. An S3 Lifecycle policy can then be configured to automatically and permanently delete these noncurrent versions after 90 days. Other options are incorrect because Amazon DLM does not manage S3 lifecycles, AWS Backup is not designed for native S3 version expiration, and Cross-Region Replication would copy data to a different AWS Region, violating the residency requirement.