ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty All Questions

View all questions & answers for the AWS Certified Security - Specialty exam
Go to Exam

Exam AWS Certified Security - Specialty topic 1 question 192 discussion

Exam question from Amazon's AWS Certified Security - Specialty
Question #: 192
Topic #: 1
[All AWS Certified Security - Specialty Questions]

A company's Chief Security Officer has requested that a Security Analyst review and improve the security posture of each company AWS account. The Security
Analyst decides to do this by improving AWS account root user security.
Which actions should the Security Analyst take to meet these requirements? (Choose three.)

  • A. Delete the access keys for the account root user in every account.
  • B. Create an admin IAM user with administrative privileges and delete the account root user in every account.
  • C. Implement a strong password to help protect account-level access to the AWS Management Console by the account root user.
  • D. Enable multi-factor authentication (MFA) on every account root user in all accounts.
  • E. Create a custom IAM policy to limit permissions to required actions for the account root user and attach the policy to the account root user.
  • F. Attach an IAM role to the account root user to make use of the automated credential rotation in AWS STS.
Show Suggested Answer Hide Answer
Suggested Answer: ACD 🗳️
by viestner at March 15, 2021, 7:24 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ChinkSantana
Highly Voted 3 years, 8 months ago
ACD. - If you do have an access key for your AWS account root user, delete it. - Use a strong password to help protect account-level access to the AWS Management Console. - Enable AWS multi-factor authentication (MFA) on your AWS account root user account https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html#create-iam-users
upvoted 27 times
...
cldy
Highly Voted 3 years, 8 months ago
A. C. D. These are best practices.
upvoted 12 times
...
Raphaello
Most Recent 1 year, 4 months ago
Selected Answer: ACD
Correct answers are ACD
upvoted 1 times
...
awssecuritynewbie
1 year, 8 months ago
Selected Answer: ACD
The wording of the questions is so poor, but it would be ACD
upvoted 1 times
...
dzidis
1 year, 11 months ago
I bet on ACD
upvoted 1 times
...
G4Exams
2 years, 2 months ago
Selected Answer: ACD
A & C & D
upvoted 1 times
...
dcasabona
2 years, 11 months ago
Selected Answer: ACD
A, C and D for me.
upvoted 3 times
...
ggx
3 years, 5 months ago
Selected Answer: ACD
ACD 100%
upvoted 5 times
...
leu_alves_sch
3 years, 5 months ago
Selected Answer: ACD
Answer: ACD
upvoted 4 times
...
sam_live
3 years, 6 months ago
I would go with ADE.
upvoted 2 times
...
BigDaddyNeo
3 years, 7 months ago
Selected Answer: CDE
Nope CDE. A is wrong, you according to link below https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html#create-iam-users The first item suggests that you lock away your access keys for the account root user and not delete them.
upvoted 3 times
Kezuko
2 years, 2 months ago
I think this link will apply more that it will be A。 https://docs.aws.amazon.com/accounts/latest/reference/credentials-access-keys-best-practices.html
upvoted 1 times
Kezuko
2 years, 2 months ago
From the link, "You can't restrict the permissions for your AWS account root user."
upvoted 1 times
...
...
justfmm
3 years, 6 months ago
from your link provided. "If you do have an access key for your AWS account root user, delete it."
upvoted 2 times
...
deus_ex_machina
2 years, 4 months ago
Why would you want to limit permissions on the root account though? (Option E)
upvoted 1 times
...
...
nainakaexam
3 years, 8 months ago
ACD for me
upvoted 5 times
...
sanjaym
3 years, 8 months ago
ACD 100%
upvoted 4 times
...
viestner
3 years, 9 months ago
ADE for me
upvoted 2 times
ca777
3 years, 8 months ago
nop ACD
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel