You log in to IAM on your AWS console and notice the following message. "Delete your root access keys." Why do you think IAM is requesting this?

AWS-Solution-Architect-Associate 0 Comments

You log in to IAM on your AWS console and notice the following message. "Delete your root access keys." Why do you think IAM is requesting this?
A .  Because the root access keys will expire as soon as you log out.
B .  Because the root access keys expire after 1 week.
C .  Because the root access keys are the same for all users.
D .  Because they provide unrestricted access to your AWS resources.

Answer: D

Explanation:

In AWS an access key is required in order to sign requests that you make using the command-line interface (CLI), using the AWS SDKs, or using direct API calls. Anyone who has the access key for your root account has unrestricted access to all the resources in your account, including billing information.

One of the best ways to protect your account is to not have an access key for your root account. We recommend that unless you must have a root access key (this is very rare), that you do not generate one. Instead, AWS best practice is to create one or more AWS Identity and Access Management (IAM) users, give them the necessary permissions, and use IAM users for everyday interaction with AWS.

Reference: http://docs.aws.amazon.com/general/latest/gr/aws-access-keys-best-practices.html#root-password

Latest AWS-Solution-Architect-Associate Dumps Valid Version with 986 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download AWS-Solution-Architect-Associate PDF     AWS-Solution-Architect-Associate Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments