AWS Certified Cloud Practitioner (CLF-C02) — Question 479

A company wants to centrally manage its employee's access to multiple AWS accounts.

Which AWS service or feature should the company use to meet this requirement?

Answer options

• A. AWS Identity and Access Management Access Analyzer
• B. AWS Secrets Manager
• C. AWS IAM Identity Center
• D. AWS Security Token Service (AWS STS)

Correct answer: C

Explanation

AWS IAM Identity Center is designed to centrally manage single sign-on access to multiple AWS accounts and business applications. AWS IAM Access Analyzer is used to identify external resource access, AWS Secrets Manager handles database credentials and API keys, and AWS STS provides temporary security credentials rather than central management.