Which of the following items are required to allow an application deployed on an EC2
instance to write data to a DynamoDB table? Assume that no security Keys are allowed to
be stored on the EC2 instance. Choose 2 answers
A.
Create an IAM User that allows write access to the DynamoDB table.
B.
Launch an EC2 Instance with the IAM User included in the launch configuration.
C.
Create an IAM Role that allows write access to the DynamoDB table.
D.
Launch an EC2 Instance with the IAM Role included in the launch configuration.
E.
Add an IAM Role to a running EC2 instance.
F.
Add an IAM User to a running EC2 Instance.
A,C
C, D
C,D – The questions asks about an application, not a user. While you -could- create a user and store their credentials on the EC2 instance, this is definitely -not- the preferred way and the question states that you shouldn’t put Keys on the EC2 Server. Therfore, A is not correct.
C D
1st It should be a Role not an User So A B F are Wrong
E is write too Currently as you can attach an IAM role to a running instance.
So its C & D