Free AWS Certified Solutions Architect Associate SAA-C03 Practice Question
A Solutions Architect needs to implement an authorization strategy that allows efficient permission updates for users based on their job functions in a cloud environment. Given the need for individualized access rights and scalable updates to access patterns, which method should be chosen?
Apply service control policies directly to user accounts to grant necessary permissions based on their job roles.
Utilize groups to represent different job functions and attach policies defining the access permissions to these groups. All users are then assigned to the appropriate groups based on their job function.
Create a single role that encompasses all permissions for different job functions and grant users the ability to assume this role based on their needs.
Implement individual policies for each user, customizing access permissions according to the specific needs and job functions.
