AWS Certified Cloud Practitioner (CLF-C02) — Question 550

Which guidelines are best practices for using AWS Identity and Access Management (IAM)? (Choose two.)

Answer options

• A. Share access keys.
• B. Create individual IAM users.
• C. Use inline policies instead of customer managed policies.
• D. Grant maximum privileges to IAM users.
• E. Use groups to assign permissions to IAM users.

Correct answer: B, E

Explanation

Creating individual IAM users ensures accountability and unique credentials for each person, while using groups simplifies permission management by applying policies to multiple users at once. Conversely, sharing access keys and granting maximum privileges violate security best practices like the principle of least privilege, and customer managed policies are generally preferred over inline policies for reusability.