AWS Certified Solutions Architect Associate SAA-C03 Practice Question
An application deployed on a cloud virtual server requires interaction with object storage and a NoSQL database service. What is the recommended method to manage the application's service-specific permissions in accordance with best security practices that enforce minimal access rights?
Create a role with the exact permissions required by the application and attach it to the virtual server.
Utilize the cloud platform's root account to ensure uninterrupted access to necessary services.
Embed long-term security credentials in the source code of the application to authorize service interactions.
Configure an account with administrative privileges and programmatically distribute its access keys across all server instances.