Answer-first summary for fast verification
Answer: Establishing a cross-account role and obtaining temporary credentials through the sts:AssumeRole API.
The most secure way for a developer to obtain temporary access to resources in a second AWS account is by establishing a cross-account access role and then using the sts:AssumeRole API to obtain short-lived credentials. This method provides temporary security credentials, reduces the risk associated with long-term credentials, and adheres to AWS best practices for security. Options A, B, and D are either inappropriate or less secure for this use case.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
How can a developer securely obtain temporary access to resources in another AWS account?
A
Utilizing Amazon Cognito user pools to acquire temporary credentials for the second account.
B
Generating a specific IAM access key for the second account and distributing it via mail.
C
Establishing a cross-account role and obtaining temporary credentials through the sts:AssumeRole API.
D
Configuring trust and appending an SSH key for the second account to an IAM user.
No comments yet.