AWS Certified Cloud Practitioner

Get started today

Ultimate access to all questions.

Explanation:

IAM policy with condition aws:MultiFactorAuthPresent:true on ec2:StopInstances and ec2:TerminateInstances ensures MFA is used. This matches the requirement for MFA before destructive actions.

A company policy requires MFA authentication before a user can stop or terminate EC2 instances. Which policy should the SysOps administrator apply?

Exam-Like

UAnonymous

Last updated: April 30, 2026 at 11:42

(Policy A — requires MFA condition on stop/terminate EC2 actions)

(Policy B)

(Policy C)

(Policy D)

AWS Certified Cloud Practitioner

Get started today

Get started today

Comments (0)

A company policy requires MFA authentication before a user can stop or terminate EC2 instances. Which policy should the SysOps administrator apply?