AWS Certified Cloud Practitioner — Question 763

Which guidelines are best practices for using AWS Identity and Access Management (IAM)? (Choose two.)

Answer options

• A. Share access keys.
• B. Create individual IAM users.
• C. Use inline policies instead of customer managed policies.
• D. Grant maximum privileges to IAM users.
• E. Use groups to assign permissions to IAM users.

Correct answer: B, E

Explanation

Creating individual IAM users ensures unique credentials and accountability for each person, while assigning permissions to groups simplifies access management across multiple users. Conversely, sharing access keys and granting maximum privileges violate security best practices such as the principle of least privilege, and customer managed policies are preferred over inline policies for better reusability and management.