AWS Certified SysOps Administrator – Associate (legacy) — Question 515

A company is releasing a new static website hosted on Amazon S3. The static website hosting feature was enabled on the bucket and content was uploaded; however, upon navigating to the site, the following error message is received:
403 Forbidden `" Access Denied
What change should be made to fix this error?

Answer options

• A. Add a bucket policy that grants everyone read access to the bucket
• B. Add a bucket policy that grants everyone read access to the bucket objects
• C. Remove the default bucket policy that denies read access to the bucket
• D. Configure cross-origin resource sharing (CORS) on the bucket

Correct answer: B

Explanation

To successfully host a public static website on Amazon S3, anonymous users must have read access to the website's files, which is accomplished by applying a bucket policy that allows 's3:GetObject' permissions for all objects. Granting read access to the bucket itself only allows listing the bucket contents rather than viewing the web pages, and configuring CORS is used for cross-domain resource access rather than resolving basic file permissions.