Answer-first summary for fast verification
Answer: Create a new set of policies with reduced permissions and gradually migrate users to these new policies, monitoring for any issues.
Gradually migrating users to new policies with reduced permissions ensures a controlled transition that minimizes disruption while adhering to the principle of least privilege. This approach allows for monitoring and adjustment as needed, ensuring that users have only the permissions necessary to perform their duties.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Consider a scenario where an AWS environment has been configured with IAM policies that grant extensive permissions to a set of users. Upon review, it is discovered that these permissions exceed the necessary level for the users to perform their duties. What steps would you take to apply the principle of least privilege and reduce the risk of unauthorized access or actions?
A
Immediately revoke all permissions and re-evaluate the need for each permission individually.
B
Create a new set of policies with reduced permissions and gradually migrate users to these new policies, monitoring for any issues.
C
Instruct users to self-regulate their permissions and report any unnecessary access.
D
Increase monitoring of user activities to detect any misuse of permissions before taking action.
No comments yet.