AWS Certified Cloud Practitioner (CLF-C02) — Question 105

A developer has been hired by a large company and needs AWS credentials.
Which are security best practices that should be followed? (Choose two.)

Answer options

• A. Grant the developer access to only the AWS resources needed to perform the job.
• B. Share the AWS account root user credentials with the developer.
• C. Add the developer to the administrator’s group in AWS IAM.
• D. Configure a password policy that ensures the developer’s password cannot be changed.
• E. Ensure the account password policy requires a minimum length.

Correct answer: A, E

Explanation

Option A is correct because granting access strictly to the necessary resources minimizes security risks. Option E is also correct as requiring a minimum password length enhances security. Options B and C are incorrect because sharing root user credentials or giving administrator access poses significant security threats. Option D is also incorrect since preventing password changes compromises security practices.