AWS Certified Solutions Architect Associate SAA-C03 Practice Question
As the architect for a corporation with several divisions requiring varied levels of access to cloud resources, you are charged with devising a permission structure that eases the management burden and is future-proof. Which approach would best achieve this goal?
Utilize only the cloud provider's predefined job function policies to delegate permissions correlating to divisional functions.
Craft custom policies for each individual based on their specific divisional duties.
Attach managed policies to groups correlated with the distinct divisions.
Establish a separate cloud services account for each division, creating individual access credentials per team member.