AWS Certified SysOps Administrator – Associate (legacy) — Question 6

A mobile application must allow users to securely access their own content stored in a shared Amazon S3 bucket.
Which AWS services should be used to enable this access? (Choose two.)

Answer options

• A. AWS Directory Service
• B. AWS Shield
• C. IAM roles
• D. Amazon Cognito
• E. AWS Organizations

Correct answer: C, D

Explanation

IAM roles are essential for granting permissions to users to access the S3 bucket securely. Amazon Cognito is used for user authentication and identity management, allowing users to sign in and access their content. The other options, such as AWS Directory Service and AWS Shield, do not directly facilitate secure access to S3 content.