ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty All Questions

View all questions & answers for the AWS Certified Security - Specialty exam
Go to Exam

Exam AWS Certified Security - Specialty topic 1 question 135 discussion

Exam question from Amazon's AWS Certified Security - Specialty
Question #: 135
Topic #: 1
[All AWS Certified Security - Specialty Questions]

What are the MOST secure ways to protect the AWS account root user of a recently opened AWS account? (Choose two.)

  • A. Use the AWS account root user access keys instead of the AWS Management Console
  • B. Enable multi-factor authentication for the AWS IAM users with the AdministratorAccess managed policy attached to them
  • C. Enable multi-factor authentication for the AWS account root user
  • D. Use AWS KMS to encrypt all AWS account root user and AWS IAM access keys and set automatic rotation to 30 days
  • E. Do not create access keys for the AWS account root user; instead, create AWS IAM users
Show Suggested Answer Hide Answer
Suggested Answer: CE 🗳️
by joeboy at March 14, 2020, 6:30 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
lifeisgift
Highly Voted 3 years, 8 months ago
Should be CE: A:access key is the same with console,not help B: MFA for IAM user will not help root account; D: rotate will help a little, but the question is "The most";
upvoted 28 times
...
eskimolander
Highly Voted 3 years, 7 months ago
Why is the answer incorrect as it is obvious that with the current answers it is C and E? Why don´t they get fixed? Are the answers being moved into different positions for some reason?
upvoted 5 times
...
Raphaello
Most Recent 1 year, 4 months ago
Selected Answer: CE
CE definitely.
upvoted 1 times
...
pedrojorge
1 year, 11 months ago
Selected Answer: CE
It is C and E
upvoted 1 times
...
preholic
1 year, 11 months ago
Selected Answer: CE
CE가 맞습니다.
upvoted 1 times
...
ITGURU51
2 years, 2 months ago
MFA is the best practice for root account. In addition, AWS recommends creating an IAM user so the answer is CE.
upvoted 1 times
...
xplusfb
2 years, 3 months ago
Selected Answer: CE
Should C and E. Because question asking basicaly what should we do.
upvoted 1 times
...
dcasabona
2 years, 10 months ago
Selected Answer: CE
Option C and E.
upvoted 2 times
...
Jonfernz
3 years, 1 month ago
Selected Answer: CE
Mfa for root. Don’t give keys for root
upvoted 1 times
...
1awssec
3 years, 7 months ago
https://docs.aws.amazon.com/general/latest/gr/aws-access-keys-best-practices.html
upvoted 2 times
...
kiev
3 years, 7 months ago
CE for me as well and that is full house CE
upvoted 3 times
...
sanjaym
3 years, 8 months ago
CE for sure
upvoted 1 times
...
Nebolos
3 years, 8 months ago
CE is correct
upvoted 2 times
...
Ayusef
3 years, 8 months ago
CE 100%
upvoted 2 times
...
farziuser
3 years, 8 months ago
C & E for sure. There are five steps required to consider your root account secure. Delete your root access keys Activate MFA on your root account Create individual IAM users Use groups to assign permissions Apply an IAM password policy https://cloudaffaire.com/secure-aws-root-account/
upvoted 4 times
...
deegadaze1
3 years, 8 months ago
Correct answers : CE
upvoted 1 times
...
RajeshNayyar
3 years, 8 months ago
CE is right answer, 100%, no doubt
upvoted 1 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel