AWS Certified Cloud Practitioner — Question 500

Which actions represent best practices for using AWS IAM? (Choose two.)

Answer options

• A. Configure a strong password policy.
• B. Share the security credentials among users of AWS accounts who are in the same Region.
• C. Use access keys to lag in to the AWS Management Console.
• D. Rotate access keys on a regular basis.
• E. Avoid using IAM roles to delegate permissions.

Correct answer: A, D

Explanation

Enforcing a strong password policy and regularly rotating access keys are fundamental AWS IAM security best practices that protect user accounts and programmatic access. Sharing credentials compromises accountability, access keys are meant for programmatic access rather than console login, and IAM roles should always be preferred over long-term credentials for delegating access.