Topic 1 Question 476
A company is expecting rapid growth in the near future. A solutions architect needs to configure existing users and grant permissions to new users on AWS. The solutions architect has decided to create IAM groups. The solutions architect will add the new users to IAM groups based on department.
Which additional action is the MOST secure way to grant permissions to the new users?
Apply service control policies (SCPs) to manage access permissions
Create IAM roles that have least privilege permission. Attach the roles to the IAM groups
Create an IAM policy that grants least privilege permission. Attach the policy to the IAM groups
Create IAM roles. Associate the roles with a permissions boundary that defines the maximum permissions
ユーザの投票
コメント(4)
- 正解だと思う選択肢: C
Agreed with C
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_groups_manage_attach-policy.html
Attaching a policy to an IAM user group
👍 4Efren2023/05/17 - 正解だと思う選択肢: C
Option B is incorrect because IAM roles are not directly attached to IAM groups.
👍 4Rob1L2023/05/20 - 正解だと思う選択肢: B
should be b
👍 2nosense2023/05/16
シャッフルモード