Crucial Exams

AWS Certified CloudOps Engineer Associate SOA-C03 Practice Question

A CloudOps engineer must enforce the following requirements for IAM user passwords in a single AWS account: at least 16 characters, one uppercase, one lowercase, one number, one symbol, no reuse of the previous 15 passwords, and disable console access after 90 days until the password is changed. Which action meets these requirements with minimal operational effort?

  • Attach an IAM managed policy to all console users that includes condition keys enforcing minimum length and complexity requirements.

  • Use AWS IAM Identity Center with an external identity provider and configure the provider to apply the required password rules.

  • Enable the AWS Config managed rule for account password policy compliance and configure an EventBridge rule to disable each IAM user after 90 days.

  • Create an IAM account password policy that sets minimum length to 16, requires uppercase, lowercase, numbers and symbols, prevents reuse of 15 previous passwords, and enables 90-day hard expiry.

AWS Certified CloudOps Engineer Associate SOA-C03
Security and Compliance
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot