AWS Certified Cloud Practitioner (CLF-C02) — Question 244

A developer wants AWS users to access AWS services by using temporary security credentials.

Which AWS service or feature should the developer use to provide these credentials?

Answer options

• A. IAM policies
• B. IAM user groups
• C. AWS Security Token Service (AWS STS)
• D. AWS IAM Identity Center (AWS Single Sign-On)

Correct answer: C

Explanation

The correct answer is AWS Security Token Service (AWS STS) as it is specifically designed to issue temporary security credentials for AWS services. IAM policies and IAM user groups manage permissions and organization but do not create temporary credentials. AWS IAM Identity Center (AWS Single Sign-On) is focused on providing single sign-on access rather than issuing temporary credentials.