AWS Certified Cloud Practitioner

The principle of least privilege means giving a user account only those privileges which are essential to perform its intended function. For example, a user account for the sole purpose of creating backups does not need to install software; hence, it has rights only to run backup and backup-related applications. This security best practice minimizes the attack surface and reduces the risk of unauthorized access or accidental misuse of permissions.