Which of the following items are required to allow an application deployed on an EC2 instance to write data to a
DynamoDB table? Assume that no security keys are allowed to be stored on the EC2 instance. (Choose 2
answers)
A.
Create an IAM Role that allows write access to the DynamoDB table.
B.
Add an IAM Role to a running EC2 instance.
C.
Create an IAM User that allows write access to the DynamoDB table.
D.
Add an IAM User to a running EC2 instance.
E.
Launch an EC2 Instance with the IAM Role included in the launch configuration.
Explanation:
http://docs.aws.amazon.com/amazondynamodb/latest/developerguide/TicTacToe.Phase3.
html
A, B
A. Create an IAM Role that allows write access to the DynamoDB table.
B. Add an IAM Role to a running EC2 instance.
http://www.aiotestking.com/amazon/which-of-the-following-items-are-required-to-allow-an-application-deployed-on-an-ec2-instance-to-write-data-to-a-dynamodb-table/
You are right but the exam questions are outdated. therefore A&E
AE
You can’t add an IAM role to a running instance.
Yes since Feb 2017, https://aws.amazon.com/about-aws/whats-new/2017/02/new-attach-an-iam-role-to-your-existing-amazon-ec2-instance/
A & E …. It can be A & B in 2017 but not before 2017 since attaching a role to a running instance is a new feature
Can you travel back in time to 2016 and take the test?
A&E
http://jayendrapatil.com/tag/iam-role/