AWS Certified Cloud Practitioner — Question 207

What should a user do if the user loses an IAM secret access key?

Answer options

• A. Retrieve the secret access key by using the IAM console.
• B. Create a new user with a new access key and a new secret access key.
• C. Rotate the secret access key.
• D. Request a new secret access key from AWS Support.

Correct answer: C

Explanation

The correct answer is C, as rotating the secret access key is the best practice to ensure security and minimize risks after it has been compromised or lost. Option A is incorrect because once a secret access key is lost, it cannot be retrieved. Option B is a potential solution but not the most secure or efficient method. Option D is not applicable, as AWS Support does not issue new secret access keys for lost keys.