AWS Certified Security - Specialty
Get started today
Ultimate access to all questions.
Comments
Loading comments...
Ultimate access to all questions.
In a multi-account AWS environment, you need to implement cross-account roles to allow specific users in one account to access resources in another account securely. Describe how you would set up these roles, including the use of IAM policies and trust relationships, to ensure secure and controlled access.
A
Create a single IAM role with admin permissions in the target account and share the credentials with the source account users.
B
Set up IAM roles in the target account with predefined policies and establish trust relationships with the source account, allowing specific users or groups in the source account to assume these roles.
C
Use the root user credentials from the source account to access resources in the target account.
D
Disable cross-account access and use a single account for all operations.