Which of the below 2 options can NOT be used to enable “S3 Block Public Access”?(Select TWO.)

Answer options:

A.Rest APIs
B.S3 Console
C.SDKs
D.AWS CLI “S3 mb” command
E.S3 Object Lock

Answer: D and E
Option A is INCORRECT. We can use Rest APIs to enable “S3 Block Public Access”.
Option B is INCORRECT. S3 console can be used to enable “S3 Block Public Access”.
Option C is INCORRECT. SDKs can be used to enable “S3 Block Public Access”.
Option D is CORRECT. AWS CLI S3 mb command is used to “make a bucket” and cannot be used to enable “S3 Block Public Access”.
Option E is CORRECT. S3 Object Lock helps us to associate retention date to S3 objects. Deletion of the S3 objects is prevented until the specified retention date.
Reference:
https://aws.amazon.com/blogs/storage/amazon-s3-consistently-raises-the-bar-in-data-security/
https://docs.aws.amazon.com/cli/latest/reference/s3/mb.html