🔥 3-day streak
AWS Certified Security - Specialty81 / 184
Question 81 of 184
A company stores per-user files in a single S3 bucket named 'corp-user-data', with each user's objects stored under a prefix matching their IAM user name (for example, 'home/alice/'). All employees authenticate as IAM users and assume no roles. The security team wants a single, maintainable identity-based policy attached to all users that grants each user full object access ONLY to their own prefix, without creating a separate policy per user. Which policy construct achieves this least-privilege requirement most efficiently?
Reviewed for accuracy · Report an issueNext question