AWS Certified Cloud Practitioner (CLF-C02) — Question 433

Which of the following are ways to improve security on AWS? (Choose two.)

Answer options

• A. Using AWS Artifact
• B. Granting the broadest permissions to all IAM roles
• C. Running application code with AWS Cloud
• D. Enabling multi-factor authentication (MFA) with Amazon Cognito
• E. Using AWS Trusted Advisor security checks

Correct answer: D, E

Explanation

Activating multi-factor authentication (MFA) in Amazon Cognito enhances user identity protection, while using AWS Trusted Advisor security checks helps identify and remediate potential security gaps in your environment. Conversely, granting broad permissions violates the principle of least privilege, and AWS Artifact is primarily used for compliance documentation rather than active security configuration.