AWS Certified Cloud Practitioner
Get started today
Ultimate access to all questions.
Deep dive into the quiz with AI chat providers.
We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.
Which AWS service or feature provides trusted users with temporary security credentials to access AWS resources?
Real Exam
Community
RRitesh
0
A
AWS Control Tower
B
IAM user
C
IAM web identity federation
D
AWS Security Token Service (AWS STS)
Explanation:
AWS Security Token Service (AWS STS) is the service that provides temporary, limited-privilege security credentials to trusted users. These temporary credentials are used to access AWS resources without the need for long-term access keys.
Key points about AWS STS:
- Provides temporary security credentials that expire after a configurable period
- Supports various federation scenarios including IAM roles, SAML, and web identity federation
- Enables secure access for users, applications, and services without managing long-term credentials
- Integrates with IAM roles to assume temporary permissions
Why other options are incorrect:
- AWS Control Tower: A service for setting up and governing a secure multi-account AWS environment, not for providing temporary credentials
- IAM user: Provides long-term credentials, not temporary ones
- IAM web identity federation: This is actually a use case that leverages AWS STS to provide temporary credentials, but AWS STS is the actual service that provides the credentials
Comments
Loading comments...