Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

← Network Security, Compliance and Governance practice sets

ANS-C01 Network Security, Compliance and Governance • Set 27

ANS-C01 Network Security, Compliance and Governance Practice Test 27 — 15 Questions

ANS-C01 Network Security, Compliance and Governance Practice Test 27 — 15 questions with explanations. Free, no signup.

15
Questions
Free
No signup
Certifications/ANS-C01/Practice Test/Network Security, Compliance and Governance/Set 27
Question 1 of 150 answered
easy

A company has a web application running on EC2 instances behind an Application Load Balancer (ALB). The application stores files in an S3 bucket. The security team wants to ensure that the EC2 instances can only access the specific S3 bucket and no other AWS services. They have created an IAM role for the EC2 instances with a policy that grants s3:PutObject and s3:GetObject on the specific bucket. They have also attached a VPC endpoint for S3 to the VPC and added a bucket policy that allows access only from the VPC endpoint. Despite this, the EC2 instances can still access other S3 buckets. What is the most likely reason?

Scored session

Track progress, bookmark weak spots, and get readiness analysis.

Start full session

Practice tests

Scored 10-question sessions with instant feedback and explanations.

ANS-C01 Practice Test 1 — 10 Questions→ANS-C01 Practice Test 2 — 10 Questions→ANS-C01 Practice Test 3 — 10 Questions→ANS-C01 Practice Test 4 — 10 Questions→ANS-C01 Practice Test 5 — 10 Questions→ANS-C01 Practice Exam 1 — 20 Questions→ANS-C01 Practice Exam 2 — 20 Questions→ANS-C01 Practice Exam 3 — 20 Questions→ANS-C01 Practice Exam 4 — 20 Questions→Free ANS-C01 Practice Test 1 — 30 Questions→Free ANS-C01 Practice Test 2 — 30 Questions→Free ANS-C01 Practice Test 3 — 30 Questions→ANS-C01 Practice Questions 1 — 50 Questions→ANS-C01 Practice Questions 2 — 50 Questions→ANS-C01 Exam Simulation 1 — 100 Questions→

Practice by domain

Each domain maps to a weighted exam section. Focus on the domain where you are weakest.

Network Management and OperationsNetwork Security, Compliance and GovernanceNetwork DesignNetwork Implementation

Practice by scenario

Filter questions by type — troubleshooting, exhibit, drag-and-drop, PBQ, ACLs, OSPF, and more.

Browse scenarios→

Continue studying

All Network Security, Compliance and Governance setsAll Network Security, Compliance and Governance questionsANS-C01 Practice Hub