Free AWS Certified Developer Associate DVA-C02 Practice Question

AWS Identity and Access Management (IAM) roles are used to grant permissions to AWS resources without the need to manage static credentials. When attaching an IAM role to an EC2 instance, the instance can perform actions on AWS services that the role's policies allow. This is the recommended method for granting EC2 instances access to other AWS services. IAM users are not attached directly to resources, access keys are not a feature for granting permissions but are used for programmatic access for IAM users, and Amazon Cognito is primarily used for managing user identities in apps, not for EC2 instances to access AWS resources.