AWS Certified Cloud Practitioner — Question 642

Which AWS service is used to temporarily provide federated security credentials to access AWS resources?

Answer options

• A. Amazon GuardDuty
• B. AWS Simple Token Service (AWS STS)
• C. AWS Secrets Manager
• D. AWS Certificate Manager

Correct answer: B

Explanation

AWS Simple Token Service (AWS STS) is the dedicated service used to request temporary, limited-privilege credentials for federated users, IAM roles, or users. Other listed services such as Amazon GuardDuty (threat detection), AWS Secrets Manager (secrets storage), and AWS Certificate Manager (SSL/TLS certificate management) do not provide federated access credentials.