In a company's shared AWS account, a Lambda function requires permission to perform ec2:DescribeInstances on the development accounts. How should a developer configure permissions to follow the principle of least privilege?

Exam-Like

Create and configure an IAM role in the shared account with a trust relationship to development accounts and update Lambda's IAM role with necessary permissions.

15.0%

Create and configure an IAM role in the development accounts with a trust relationship to the shared account and update Lambda's IAM role with necessary permissions.

53.3%

Establish an IAM role in the shared account with permissions and trust for development accounts, then update Lambda's IAM role in the shared account.

16.7%

Establish an IAM role in the development accounts with permissions and trust for the shared account, then update Lambda's IAM role in the shared account.

15.0%

AWS Certified Developer - Associate

Get started today

Comments

In a company's shared AWS account, a Lambda function requires permission to perform ec2:DescribeInstances on the development accounts. How should a developer configure permissions to follow the principle of least privilege?