A company is setting up AWS Identity and Access Management (IAM) on an AWS account.
Which recommendation complies with IAM security best practices?

Question

A company is setting up AWS Identity and Access Management (IAM) on an AWS account. Which recommendation complies with IAM security best practices?

Accepted Answer

Correct answer: C. C. Turn on multi-factor authentication (MFA) for added security during the login process. — Enabling multi-factor authentication (MFA) significantly enhances security by requiring an additional verification step, making unauthorized access more difficult. Using the root user access keys (A) poses a security risk, while granting broad permissions (B) violates the principle of least privilege. Finally, not rotating credentials (D) can lead to security vulnerabilities as old credentials may be compromised.

AWS Certified Cloud Practitioner (CLF-C02) — Question 61

Answer options

Correct answer: C

Explanation