Which IAM security practices are recommended? (Select ALL that apply)

Question

BlackTom AI · Accepted Answer

When evaluating IAM security practices, I consider both recommended and discouraged approaches and how they impact access control and risk.
Option: shared root user access keys
Reasoning: Sharing root access keys is risky because the root account has unrestricted privileges. If keys are shared, there is no traceability or accountability for actions, and a single compromised key could grant widespread access. Best practice is to avoid using root keys altogether and instead rely on individual accounts with strong controls and MFA.

Option: Use multi-factor authentication
Reasoning: MFA adds a second factor beyond a password, significantly reducing the likelihood that an attacker can gain access even if credentials are compromised. It is a widely recommended security measure for IAM to protect sensitive operations and privileged accounts.

Option: store credentials in code repositories
Reasoning: Storing credentials in code repositories exposes secrets to anyone who can access the repository, including collaborators who may not need them and potential attackers. This practice leads to credential leakage and is strongly discouraged. Secrets should be managed with dedicated secret management tools and access controls.

Option: Apply principle of least privilege
Reasoning: The principle of least privilege ensures users and services receive only the minimal permissions necessary to perform their tasks. This reduces the blast radius of any compromised account and aligns with secure-by-default IAM posture. It is a core recommended practice in IAM security.

In summary, the recommended practices among the options are not only to enable MFA but also to enforce least privilege, while avoiding sharing root keys and refraining from embedding credentials in code repositories. Such combinations bolster secure access management and minimize risk exposure.

CSYE6225.17541.202610 Quiz 1- Requires Respondus LockDown Browser

Which IAM security practices are recommended? (Select ALL that apply)

View Explanation

Log in for full answers

Similar Questions

What components ensure secure access and management of user identities within the digital ecosystem?

Which of the following describes a security best practice that can be implemented by using AWS Identity and Access Management (IAM)?

Which of the following are best practices to secure your account using the identity and Access Management (IAM)? (Choose 2)

Which AWS service enables identity and access management?

With AWS IAM, you can manage which THREE of the following?

What is the best practice for applying permissions to many users who perform the same job?

Which of the followings is not an AWS IAM identity?

Which domain contains critical systems and applications that support and provide various services that perform core functions like authentication, authorization, and data management?

More Practical Tools for Students Powered by AI Study Helper

Homework AI Solver

Stylized AI Paper Writer

Plagiarism Checker Assistant

Citation AI Academic Writing Tool

In-Class Translation Assistant

AI Note Generator

AI Quiz Answers

Past Exam Questions from University Test Bank

Smart Practice Assistant

Adaptive Practice

Making Your Study Simpler