AWS Certified Solutions Architect Associate SAA-C03 Practice Question
A company needs to allow its employees to access cloud services without managing separate user accounts for each employee. Employees should be able to use their existing corporate login credentials. The solution should minimize cost and administrative overhead and should adhere to security best practices. What should a solutions architect recommend?
Use AWS Directory Service to synchronize the corporate directory with AWS.
Implement Amazon Cognito to authenticate employees using their corporate login credentials.
Configure identity federation with IAM roles and SAML integration to the corporate identity provider.
Create individual IAM user accounts for all employees and manage their credentials in AWS.