Register
A new DevOps engineer has joined a large financial services company recently. As part of his onboarding, the IT department is conducting a review of the checklist for tasks related to AWS Identity and
208k views
0 votes
A new DevOps engineer has joined a large financial services company recently. As part of his onboarding, the IT department is conducting a review of the checklist for tasks related to AWS Identity and Access Management. As a solutions architect, which best practices would you recommend (Select two)?

a) Use IAM groups for permissions assignment
b) Share IAM user credentials between team members
c) Assign overly permissive IAM policies
d) Enable MFA (Multi-Factor Authentication) for IAM users

User Enrico Ros
by
8.6k points

1 Answer

3 votes

Final answer:

As a solutions architect for a financial services company, you would recommend two best practices for AWS Identity and Access Management (IAM), which are using IAM groups for permissions assignment and enabling MFA for IAM users.

Step-by-step explanation:

As a solutions architect, there are two best practices you can recommend:

  1. Use IAM groups for permissions assignment: IAM groups allow you to group users with similar permissions together and simplify the management of permissions. By assigning permissions to groups, you can easily add or remove users from the group to grant or revoke permissions. This helps in maintaining consistent permissions across the organization.
  2. Enable MFA (Multi-Factor Authentication) for IAM users: Enabling MFA adds an extra layer of security to IAM user accounts. With MFA, users need to provide an additional piece of authentication, such as a code from a mobile app or a physical token, in addition to their password, before they can access AWS resources. This helps in protecting against unauthorized access even if the user's password is compromised.

User Jason Kohles
by
7.6k points
← Prev Question Next Question →

Related questions

User Mahesh G
asked Jul 1, 2024 181k views
How do you expect to be required to multi-task as a DevOps engineer?
Mahesh G asked Jul 1, 2024
by Mahesh G
8.3k points
1 answer
5 votes
181k views
Ask a Question
Welcome to QAmmunity.org, where you can ask questions and receive answers from other members of our community.

9.4m questions

12.2m answers

Other Questions

“What does it mean when we “rework” copyrighted material?”
The book shows how to add and subtract binary and decimal numbers. However, other numbering systems are also very popular when dealing with computers. The octal (base 8) numbering system is one of these.
Seven basic internal components found in a computer tower
Please help me ! All you do is just put it it all in your own words ! Please this is for my reported card!i don't know how to put it in my own words because my English is not that good!
Disadvantages of using animation in advertising? advantages and disadvantages of using animation for education? advantages and disadvantages of using animation in entertainment?
Link Copied!