Answer-first summary for fast verification
Answer: Set up an IAM role in the production account with predefined policies for accessing specific resources, and establish a trust relationship with the development account, allowing specific users or groups to assume this role.
Option B is the correct approach as it involves setting up secure IAM roles with appropriate permissions and trust relationships, which is the recommended method for enabling controlled cross-account access in AWS.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
Consider a scenario where you need to implement cross-account access to resources in a production AWS account from a development account. Describe how you would set up IAM roles and policies in the production account to allow secure and controlled access to specific resources, including the establishment of trust relationships.
A
Create an IAM role in the production account with admin permissions and share the credentials with the development account.
B
Set up an IAM role in the production account with predefined policies for accessing specific resources, and establish a trust relationship with the development account, allowing specific users or groups to assume this role.
C
Use the root user credentials from the development account to access resources in the production account.
D
Disable cross-account access and use a single account for all operations.