Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Amazon BDS-C00 Exam - Topic 2 Question 119 Discussion

A photo sharing service stores pictures in Amazon Simple Storage Service (S3) and allows application signin using an Open ID Connect compatible identity provider. Which AWS Security Token approach to temporary access should you use for the Amazon S3 operations?
A) SAML-based identity Federation
B) Cross-Account Access
C) AWS identity and Access Management roles
D) Web identity Federation

Amazon BDS-C00 Exam - Topic 2 Question 119 Discussion

Actual exam question for Amazon's BDS-C00 exam
Question #: 119
Topic #: 2
[All BDS-C00 Questions]

A photo sharing service stores pictures in Amazon Simple Storage Service (S3) and allows application signin using an Open ID Connect compatible identity provider. Which AWS Security Token approach to temporary access should you use for the Amazon S3 operations?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Tamekia at Jul 14, 2025, 07:12 AM

Limited Time Offer

25%

Off

Get Premium BDS-C00 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Alida
5 months ago
I'm surprised there’s no mention of using IAM roles directly!
upvoted 0 times
...
Maricela
6 months ago
Cross-Account Access seems a bit off for this scenario.
upvoted 0 times
...
Loise
6 months ago
Wait, isn't SAML-based identity Federation also an option?
upvoted 0 times
...
Barrie
6 months ago
I think Web identity Federation is the way to go here.
upvoted 0 times
...
Yvonne
6 months ago
Definitely agree with that! Makes sense for Open ID Connect.
upvoted 0 times
...
Nickole
6 months ago
I recall that Cross-Account Access is used for sharing resources between accounts, so I don't think that's applicable here. Web Identity Federation seems more fitting.
upvoted 0 times
...
Jeannetta
7 months ago
I’m a bit confused. I thought AWS IAM roles were more for granting permissions rather than specifically for temporary access in this context.
upvoted 0 times
...
Brinda
7 months ago
This question feels similar to one we practiced on temporary access for S3. I think Web Identity Federation might be the answer since it aligns with Open ID Connect.
upvoted 0 times
...
Filiberto
7 months ago
I remember studying about different identity federation methods, but I'm not entirely sure if SAML is the right choice here since we're using Open ID Connect.
upvoted 0 times
...
Maybelle
7 months ago
I think the answer is Web Identity Federation. The question mentions the use of an OpenID Connect compatible identity provider, which aligns with that approach.
upvoted 0 times
...
Jin
7 months ago
I'm not totally sure about this one. I'll need to double-check the differences between SAML-based identity federation and web identity federation.
upvoted 0 times
...
Ula
8 months ago
Okay, I've got this. The key is that the application is using an OpenID Connect compatible identity provider, so I'll go with Web Identity Federation.
upvoted 0 times
...
Tamekia
8 months ago
Hmm, I'm a bit confused by the options here. I'll need to review my notes on AWS security token service and identity federation.
upvoted 0 times
...
Michael
8 months ago
This looks like a tricky one. I'll need to think through the AWS security concepts carefully to determine the right approach.
upvoted 0 times
...
Gracia
9 months ago
Ah, the age-old question: which AWS security token to use? I'll just ask Alexa, she'll know.
upvoted 0 times
...
Blondell
9 months ago
B) Cross-Account Access? What is this, a spy movie? C) IAM roles is the way to go, trust me.
upvoted 0 times
Francesco
8 months ago
But B) Cross-Account Access? Sounds too complicated!
upvoted 0 times
...
Shelia
8 months ago
I agree with C) IAM roles. They're just better for this.
upvoted 0 times
...
Tyra
8 months ago
Why not A) SAML-based identity Federation? It's also solid!
upvoted 0 times
...
Fernanda
8 months ago
I think D) Web identity Federation is more straightforward.
upvoted 0 times
...
...
Kirby
10 months ago
Hmm, D) Web identity Federation? Sounds like a party! Count me in!
upvoted 0 times
Stephaine
8 months ago
A) SAML-based identity Federation is the correct approach for temporary access to Amazon S3 operations.
upvoted 0 times
...
...
Lynelle
10 months ago
A) SAML-based identity Federation? Nah, that's for enterprise stuff. D) is where it's at, my dude.
upvoted 0 times
...
Latia
10 months ago
C) AWS IAM roles is the correct answer. Gotta love that AWS security goodness!
upvoted 0 times
...
Mollie
10 months ago
Web Identity Federation is more suitable for web applications, IAM roles are better for S3 operations.
upvoted 0 times
...
Deandrea
10 months ago
But what about using Web Identity Federation for S3 operations?
upvoted 0 times
...
Gail
11 months ago
D) Web identity Federation seems like the way to go for this photo sharing service. Secure and easy to implement!
upvoted 0 times
Cheryll
9 months ago
D) Web identity Federation seems like the way to go for this photo sharing service. Secure and easy to implement!
upvoted 0 times
...
Desiree
9 months ago
A) SAML-based identity Federation
upvoted 0 times
...
...
Mike
11 months ago
I agree with Mollie, IAM roles provide temporary access and are secure.
upvoted 0 times
...
Mollie
11 months ago
I think we should use AWS Identity and Access Management roles for S3 operations.
upvoted 0 times
...

Save Cancel