Configuration Panel PBQs: AWS Certified CloudOps Engineer – Associate (SOA-C03)

medium

Question 1 of 3

Your company stores sensitive customer data in an S3 bucket named 'prod-customer-data'. A recent security audit found several misconfigurations: versioning is suspended, server-side encryption uses only SSE-S3 instead of SSE-KMS with a customer-managed key, the bucket key feature is disabled, and Block Public Access is not fully enabled. Configure the bucket properties to meet the compliance requirements specified in the objectives.

Amazon S3 > Buckets > prod-customer-data > Properties

prod-customer-data

Amazon S3 > Buckets > prod-customer-data

Bucket Versioning

▾

Bucket Versioning

EnableSuspend

Default Encryption

▾

Server-side encryption

SSE-S3 (Amazon S3 managed keys)SSE-KMS (AWS Key Management Service)DSSE-KMS (Dual-layer server-side)

Server Access Logging

▾

Server access logging

EnableDisable

Progress

0 of 8 settings correct

Adjust the configuration settings to meet the requirements

0 of 3 marked complete