AWS Certified Solutions Architect Associate SAA-C03 Practice Question
When creating IAM policies, what approach ensures that permissions are not overly permissive while maintaining necessary access for users to perform their job functions?
Using predefined managed policies exclusively
Disabling logging to streamline permissions management
Granting only the permissions required to perform a task
Assigning all available permissions to avoid access issues
The principle of least privilege dictates that IAM users should only have the minimum level of access -- or permissions -- necessary to perform their job functions. This minimizes the potential security risks by ensuring users cannot access or modify resources beyond their requirements. Granting excessive permissions goes against this principle, increasing the risk of accidental or malicious alterations to AWS resources.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the principle of least privilege?
Open an interactive chat with Bash
How can I enforce the principle of least privilege in AWS IAM policies?