When creating IAM policies, what approach ensures that permissions are not overly permissive while maintaining necessary access for users to perform their job functions?
Using predefined managed policies exclusively
Granting only the permissions required to perform a task
Assigning all available permissions to avoid access issues
Disabling logging to streamline permissions management