Summer Sale Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: ac4s65

A security engineer for a company wants to maintain all IAM users and roles according...

A security engineer for a company wants to maintain all IAM users and roles according to the principle of least privilege. The security engineer plans to audit the IAM permissions once every 365 days. The security engineer must view the permissions that each IAM identity used in the last 365 days and must remove any unused permissions.

Which solution will meet these requirements?

A.

Use AWS CloudTrail logs to review IAM identity actions and to remove unused permissions.

B.

Use AWS Config to review configuration changes by each IAM identity and to remove unused permissions.

C.

Use AWS Identity and Access Management Access Analyzer to review last accessed information and to remove unused permissions.

D.

Use AWS Trusted Advisor to check the IAM identities that have elevated permissions and to remove unused permissions.

SCS-C03 PDF/Engine
  • Printable Format
  • Value of Money
  • 100% Pass Assurance
  • Verified Answers
  • Researched by Industry Experts
  • Based on Real Exams Scenarios
  • 100% Real Questions
buy now SCS-C03 pdf
Get 65% Discount on All Products, Use Coupon: "ac4s65"