AWS Certified Cloud Practitioner (CLF-C02) — Question 525

Which action should a company take to improve security in its AWS account?

Answer options

• A. Require multi-factor authentication (MFA) for privileged users.
• B. Remove the root user account.
• C. Create an access key for the AWS account root user.
• D. Create an access key for each privileged user.

Correct answer: A

Explanation

Enforcing multi-factor authentication (MFA) for administrative and privileged users adds a vital extra layer of protection, aligning with AWS security best practices. It is impossible to delete the root user account, and creating programmatic access keys for the root user or unnecessarily for other privileged users increases security risks.