ANS-C01 Network Design • Set 22
ANS-C01 Network Design Practice Test 22 — 15 questions with explanations. Free, no signup.
A Network Engineer is troubleshooting a cross-account VPC endpoint connection. The service provider account (123456789012) has the above IAM policy attached to the endpoint service. The consumer account (111111111111) has created a VPC endpoint (vpce-abc123) and is trying to accept the connection. The consumer receives an 'AccessDenied' error when calling ec2:AcceptVpcEndpointConnections. What is the MOST likely cause?
Refer to the exhibit.
```json
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "AllowVPCEConnection",
"Effect": "Allow",
"Principal": "*",
"Action": "ec2:AcceptVpcEndpointConnections",
"Resource": "arn:aws:ec2:us-east-1:123456789012:vpc-endpoint/*",
"Condition": {
"StringEquals": {
"aws:SourceArn": "arn:aws:ec2:us-east-1:111111111111:vpc-endpoint/vpce-abc123"
}
}
}
]
}
```