Answer-first summary for fast verification
Answer: Modify the IAM policy to remove the excessive permissions and apply the changes to the IAM user.
Option B is the correct answer. Modifying the IAM policy to remove the excessive permissions and applying the changes to the IAM user is the appropriate action to address the issue. This can help you ensure that the IAM user has only the necessary permissions to perform their tasks, reducing the risk of unauthorized access or actions. Option A is not recommended, as deleting and recreating the IAM user may not be the most efficient solution and could disrupt the user's access to necessary resources. Option C is not advisable, as ignoring the findings from IAM Access Analyzer may leave your organization vulnerable to potential security risks. Option D is not recommended, as relying solely on your internal security team may not be sufficient to identify and mitigate all potential IAM policy risks.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your organization has recently implemented AWS IAM Access Analyzer to identify and mitigate potential security risks related to IAM policies. You have identified a policy that grants excessive permissions to a specific IAM user. Which of the following actions should you take to address this issue?
A
Delete the IAM user and create a new one with the appropriate permissions.
B
Modify the IAM policy to remove the excessive permissions and apply the changes to the IAM user.
C
Ignore the findings from IAM Access Analyzer and continue using the existing IAM policy.
D
Disable IAM Access Analyzer and rely solely on your internal security team to identify and mitigate IAM policy risks.
No comments yet.