AWS Certified Cloud Practitioner — Question 709

A company needs to manage multiple logins across AWS accounts within the same organization in AWS Organizations.

Which AWS service should the company use to meet this requirement?

Answer options

• A. Amazon VPC
• B. Amazon GuardDuty
• C. Amazon Cognito
• D. AWS IAM Identity Center (AWS Single Sign-On)

Correct answer: D

Explanation

AWS IAM Identity Center (formerly AWS Single Sign-On) allows administrators to centrally manage single sign-on access to all AWS accounts within AWS Organizations. Amazon VPC is for virtual networking, Amazon GuardDuty is a threat detection service, and Amazon Cognito is designed for customer identity management for web and mobile apps, making them incorrect for this scenario.