A sysops administrator is reviewing AWS Trusted Advisor warnings and encounters a warning for an S3 bucket policy t at has open access permissions.

A sysops administrator is reviewing AWS Trusted Advisor warnings and encounters a warning for an S3 bucket policy t at has open access permissions.

While discussing the issue with the bucket owner, the administrator realizes the S3 bucket is an origin for an Amazon CloudFront web distribution.
A . Encrypt the S3 bucket content with Server-Side Encryption with Amazon S3-Managed Keys (SSE-S3).
B . Create an origin access identity and grant it permissions to read objects in the S3 bucket.
C . Assign an 1AM user to the CloudFront distribution and whitelist the 1AM user in the S3 bucket policy.
D . Assign an 1AM role to the CloudFront distribution and whitelist the 1AM role in the S3 bucket policy.

View Answer

Answer: B