A root account owner is trying to understand the S3 bucket ACL. Which of the below mentioned options
cannot be used to grant ACL on the object using the authorized predefined group?
A.
Authenticated user group
B.
All users group
C.
Log Delivery Group
D.
Canonical user group
Explanation:
An S3 bucket ACL grantee can be an AWS account or one of the predefined Amazon S3 groups. Amazon S3 has
a set of predefined groups. When granting account access to a group, the user can specify one of the URLs of
that group instead of a canonical user ID. AWS S3 has the following predefined groups:
Authenticated Users group: It represents all AWS accounts. All Users group: Access permission to this group
allows anyone to access the resource. Log Delivery group: WRITE permission on a bucket enables this group to
write server access logs to the bucket.
D
D is correct
D it is.
http://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#specifying-grantee
d
D