ExpertMedium1 markMultiple Choice
AWS SAA-C03 · Question 08 · Domain 1.1: Secure Access
A mobile application requires users to sign in using their social media accounts (Google, Facebook). Once authenticated, the app needs temporary AWS credentials to upload files directly to Amazon S3. Which AWS service combination should be used?
A mobile application requires users to sign in using their social media accounts (Google, Facebook). Once authenticated, the app needs temporary AWS credentials to upload files directly to Amazon S3. Which AWS service combination should be used?
Answer options:
A.
AWS IAM users with access keys.
B.
Amazon Cognito Identity Pools only.
C.
Amazon Cognito User Pools and Identity Pools.
D.
AWS Single Sign-On (IAM Identity Center).
How to approach this question
Distinguish between Cognito User Pools and Identity Pools.
Full Answer
C.Amazon Cognito User Pools and Identity Pools.✓ Correct
Amazon Cognito User Pools for authentication and Identity Pools for AWS credentials.
Cognito User Pools provide sign-up/sign-in options. Identity Pools provide temporary AWS credentials to access services like S3.
Common mistakes
Confusing the roles of User Pools and Identity Pools.
Practice the full AWS SAA-C03 Practice Exam 2
65 questions · hints · full answers · grading
More questions from this exam
Q01A company wants to ensure that no AWS resources can be created in the ap-northeast-1 region acros...EasyQ02A web application runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The com...EasyQ03A company is storing highly sensitive data in an Amazon S3 bucket. The security team requires tha...MediumQ04An application running on an EC2 instance needs to access an Amazon DynamoDB table in a different...HardQ05A company needs to store database credentials securely. The credentials must be automatically rot...Medium