ExpertMedium1 markMultiple Choice
AWS SAA-C03 · Question 13 · Domain 1.3: Data Security
A company must store financial records in Amazon S3 for 7 years. During this time, the records cannot be deleted or modified by anyone, including the root user. Which S3 feature should be used?
A company must store financial records in Amazon S3 for 7 years. During this time, the records cannot be deleted or modified by anyone, including the root user. Which S3 feature should be used?
Answer options:
A.
S3 Versioning
B.
S3 Object Lock in Governance mode
C.
S3 Object Lock in Compliance mode
D.
S3 Lifecycle Policies
How to approach this question
Differentiate between Compliance and Governance modes.
Full Answer
C.S3 Object Lock in Compliance mode✓ Correct
S3 Object Lock in Compliance mode
In Compliance mode, a protected object version cannot be overwritten or deleted by any user, including the root user in your AWS account.
Common mistakes
Selecting Governance mode, which can be bypassed.
Practice the full AWS SAA-C03 Practice Exam 2
65 questions · hints · full answers · grading
More questions from this exam
Q01A company wants to ensure that no AWS resources can be created in the ap-northeast-1 region acros...EasyQ02A web application runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The com...EasyQ03A company is storing highly sensitive data in an Amazon S3 bucket. The security team requires tha...MediumQ04An application running on an EC2 instance needs to access an Amazon DynamoDB table in a different...HardQ05A company needs to store database credentials securely. The credentials must be automatically rot...Medium