DVA-C02 • Hard Questions
The 25 most difficult DVA-C02 questions — topics that eliminate candidates. Full explanations for every option.
A developer needs to grant an IAM role in Account B read-only access to objects in an S3 bucket in Account A. The bucket is encrypted with server-side encryption using AWS KMS (SSE-KMS) with a customer managed key (CMK) in Account A. Which combination of policies is required for the cross-account access to succeed?