Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Amazon BDS-C00 Exam - Topic 11 Question 89 Discussion

Managers in a company need access to the human resources database that runs on Amazon Redshift, to run reports about their employees. Managers must only see information about their direct reports.Which technique should be used to address this requirement with Amazon Redshift?
A) Define an IAM group for each employee as an IAM user in that group and use that to limit the access. and D) Define a view that uses the employee's manager name to filter the records based on current user names.
B) Use Amazon Redshift snapshot to create one cluster per manager. Allow the managers to access only their designated clusters.
C) Define a key for each manager in AWS KMS and encrypt the data for their employees with their private keys.

Amazon BDS-C00 Exam - Topic 11 Question 89 Discussion

Actual exam question for Amazon's BDS-C00 exam
Question #: 89
Topic #: 11
[All BDS-C00 Questions]

Managers in a company need access to the human resources database that runs on Amazon Redshift, to run reports about their employees. Managers must only see information about their direct reports.

Which technique should be used to address this requirement with Amazon Redshift?

Show Suggested Answer Hide Answer
Suggested Answer: A, D

by Stevie at Apr 10, 2024, 07:34 PM

Limited Time Offer

25%

Off

Get Premium BDS-C00 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Jerry
6 months ago
IAM groups for each employee? That sounds excessive!
upvoted 0 times
...
Franchesca
6 months ago
Wait, can you really filter records like that in Redshift?
upvoted 0 times
...
Felton
7 months ago
Definitely, a view would simplify things for managers!
upvoted 0 times
...
Renea
7 months ago
I disagree, creating separate clusters is too much overhead.
upvoted 0 times
...
Buddy
7 months ago
Option D seems like the best choice for limiting access.
upvoted 0 times
...
Tonette
7 months ago
I recall something about using snapshots for access control, but creating a cluster per manager seems inefficient. I lean towards option D as well.
upvoted 0 times
...
Jeannetta
7 months ago
I think we practiced a similar question where we had to restrict access based on user identity. Option D sounds familiar and might be the best fit here.
upvoted 0 times
...
Karl
8 months ago
I'm not entirely sure about the IAM groups approach in option A. It feels a bit complicated for just limiting access to direct reports.
upvoted 0 times
...
Desirae
8 months ago
I remember we discussed using views in Redshift to filter data based on user roles. It seems like option D could be the right choice.
upvoted 0 times
...
Lonny
8 months ago
Ah, this is a good one. I think option D is the way to go here. Defining a view that filters the data based on the current user's manager name seems like the most straightforward and efficient solution. I feel pretty confident about this one.
upvoted 0 times
...
Sage
8 months ago
Hmm, I'm not sure about these options. Option B with separate clusters per manager seems like it could get complicated to manage. And option C with KMS encryption feels like it might be overkill for this scenario. I think I'll go with option D and the view-based filtering approach.
upvoted 0 times
...
Hoa
8 months ago
I'm a bit unsure about this one. Option A with IAM groups could work, but it might be overkill for this use case. I'm leaning more towards option D, as it seems like the simplest way to implement the required access control.
upvoted 0 times
...
Carmela
8 months ago
This seems like a straightforward access control problem. I think option D, using a view to filter the records based on the current user's manager name, is the most direct and efficient solution.
upvoted 0 times
...
Carlee
8 months ago
This question seems straightforward. I think the key is to focus on the characteristics of a conformance-based specification and determine which scenario best fits that.
upvoted 0 times
...
Flo
8 months ago
Hmm, I'm a bit unsure about the order of the activities here. I'll need to think through the logic carefully.
upvoted 0 times
...
Hannah
1 year ago
Ah, the classic 'which option is the most 'AWS-y'?' dilemma. I'm betting option D is the winner, unless the exam is trying to trick us with some overly-complicated 'cloud-native' solution.
upvoted 0 times
Kattie
12 months ago
Yeah, option D seems like the most practical choice for this scenario.
upvoted 0 times
...
Jesus
1 year ago
I agree, using a view to filter records based on the current user seems like the most straightforward approach.
upvoted 0 times
...
Robt
1 year ago
I think option D makes the most sense. It's a simple solution to limit access.
upvoted 0 times
...
...
Ula
1 year ago
I'm going with option D as well. Defining a view to filter the data based on the current user's manager name seems like the most elegant and efficient solution here.
upvoted 0 times
...
Amie
1 year ago
Haha, option C is just crazy! Encrypting the data with manager-specific keys? That's like putting a padlock on a digital door. Way too much complexity for a simple access control problem.
upvoted 0 times
Arthur
1 year ago
D) Define a view that uses the employee's manager name to filter the records based on current user names.
upvoted 0 times
...
Sherell
1 year ago
B) Use Amazon Redshift snapshot to create one cluster per manager. Allow the managers to access only their designated clusters.
upvoted 0 times
...
Joesph
1 year ago
A) Define an IAM group for each employee as an IAM user in that group and use that to limit the access.
upvoted 0 times
...
...
Maira
1 year ago
Option B is an interesting approach, but it seems a bit overkill for this use case. Creating a separate cluster for each manager could quickly become unwieldy and expensive.
upvoted 0 times
...
Jamal
1 year ago
I see both points, but I think option D is more practical and efficient for managing access to the human resources database.
upvoted 0 times
...
Benton
1 year ago
I disagree, I believe option A is more secure as it limits access by defining IAM groups for each employee.
upvoted 0 times
...
Frederick
1 year ago
Option D sounds like the most straightforward solution. I like how it allows managers to access only the data they need without having to manage separate clusters or encryption keys.
upvoted 0 times
Evette
1 year ago
It's important to make sure managers only see data relevant to their direct reports.
upvoted 0 times
...
Janine
1 year ago
Defining a view based on manager names would definitely simplify things.
upvoted 0 times
...
Sol
1 year ago
I agree, it seems like the most efficient way to limit access.
upvoted 0 times
...
Garry
1 year ago
Option D sounds like the most straightforward solution.
upvoted 0 times
...
...
Margart
1 year ago
I think option D is the best choice because it allows managers to only see information about their direct reports.
upvoted 0 times
...

Save Cancel