← AWS Certified Solutions Architect - Associate (SAA-C03) - 340 Questions

Free Preview

Question 1 of 5

A company is setting up AWS accounts for the first time and wants to follow IAM best practices. The security team requires that no one should use the root account for day-to-day operations and that all privileged actions must require an additional layer of verification. Which combination of actions should a solutions architect recommend? (Choose the most complete answer.)

Enable MFA on the root account and create individual IAM users with least-privilege permissions for administrators. Share the root account credentials among trusted administrators to limit the number of accounts. Store root account credentials in AWS Secrets Manager and rotate them automatically every 30 days. Create root account access keys and distribute them only to senior engineers for critical tasks.

This is a free preview. Create an account to access all 340 questions.

Free Preview

We use cookies

Cookie Settings

Essential Cookies Always Active

Analytics Cookies

Advertising Cookies