Topic 1 Question 387

AWS Certified Solutions Architect - Associate

Topic 1 Question 387
A new employee has joined a company as a deployment engineer. The deployment engineer will be using AWS CloudFormation templates to create multiple AWS resources. A solutions architect wants the deployment engineer to perform job activities while following the principle of least privilege.

Which combination of actions should the solutions architect take to accomplish this goal?

2 つ選択
- Have the deployment engineer use AWS account root user credentials for performing AWS CloudFormation stack operations.
- Create a new IAM user for the deployment engineer and add the IAM user to a group that has the PowerUsers IAM policy attached.
- Create a new IAM user for the deployment engineer and add the IAM user to a group that has the AdministratorAccess IAM policy attached.
- Create a new IAM user for the deployment engineer and add the IAM user to a group that has an IAM policy that allows AWS CloudFormation actions only.
- Create an IAM role for the deployment engineer to explicitly define the permissions specific to the AWS CloudFormation stack and launch stacks using that IAM role.
ユーザの投票
コメント(5)
- 正解だと思う選択肢: DE
  I agree DE
  
  👍 2
  fruto1232023/03/11
- D, E https://www.examtopics.com/discussions/amazon/view/46428-exam-aws-certified-solutions-architect-associate-saa-c02/
  
  👍 2
  aragon_saa2023/03/12
- 正解だと思う選択肢: DE
  D & E are a good choices
  
  👍 1
  elearningtakai2023/03/30
シャッフルモード

ユーザの投票

コメント(5)