In which situations should a company create an IAM user instead of an IAM role?

Question

Accepted Answer

Correct answer: B. B. When the company creates AWS access credentials for individuals — IAM users are designed to represent specific human individuals who require permanent, long-term AWS credentials. In contrast, IAM roles are meant for situations requiring temporary security credentials, such as granting permissions to applications on Amazon EC2, mobile apps, or federated corporate users.

AWS Certified Cloud Practitioner (CLF-C02) — Question 649

Answer options

Correct answer: B

Explanation