AWS Certified Cloud Practitioner — Question 155

Which of the following actions are controlled with AWS Identity and Access Management (IAM)? (Choose two.)

Answer options

• A. Control access to AWS service APIs and to other specific resources.
• B. Provide intelligent threat detection and continuous monitoring.
• C. Protect the AWS environment using multi-factor authentication (MFA).
• D. Grant users access to AWS data centers.
• E. Provide firewall protection for applications from common web attacks.

Correct answer: A, C

Explanation

The correct answers are A and C because IAM is designed to control access to AWS services and resources, as well as to implement security measures like multi-factor authentication (MFA). Options B, D, and E pertain to threat detection, physical security, and application firewalling, which are not directly managed by IAM.