Free AWS Certified Solutions Architect Associate SAA-C03 Practice Question
As the architect for a corporation with several divisions requiring varied levels of access to cloud resources, you are charged with devising a permission structure that eases the management burden and is future-proof. Which approach would best achieve this goal?
Utilize only the cloud provider's predefined job function policies to delegate permissions correlating to divisional functions.
Attach managed policies to groups correlated with the distinct divisions.
Craft custom policies for each individual based on their specific divisional duties.
Establish a separate cloud services account for each division, creating individual access credentials per team member.
This question's topic:
AWS Certified Solutions Architect Associate SAA-C03 /
Design Secure Architectures
