In the event of a suspected AWS account compromise, which strategies would you implement to invalidate and rotate credentials effectively? Describe the steps you would take using AWS Identity and Access Management (IAM) and AWS Secrets Manager.

Simulated

Immediately delete all IAM users and recreate them with new credentials.

0.0%

Rotate the access keys and passwords of affected IAM users using AWS Secrets Manager, and invalidate old credentials by revoking their permissions in IAM.

100.0%

Disable the AWS account and create a new one, transferring all resources to the new account.

0.0%

Change the root account password and ignore the IAM users assuming they are not compromised.

0.0%

AWS Certified Security - Specialty

Get started today

Comments

In the event of a suspected AWS account compromise, which strategies would you implement to invalidate and rotate credentials effectively? Describe the steps you would take using AWS Identity and Access Management (IAM) and AWS Secrets Manager.