AWS Certified Cloud Practitioner (CLF-C02) — Question 617

Which AWS service is used to temporarily provide federated security credentials to access AWS resources?

Answer options

• A. Amazon GuardDuty
• B. AWS Simple Token Service (AWS STS)
• C. AWS Secrets Manager
• D. AWS Certificate Manager

Correct answer: B

Explanation

AWS Simple Token Service (AWS STS) is the specific service used to request temporary, limited-privilege credentials for federated users, IAM users, or roles. Amazon GuardDuty is an intelligent threat detection service, AWS Secrets Manager is used to store and rotate secrets like database passwords, and AWS Certificate Manager is used to provision and manage SSL/TLS certificates.