Your company has defined privileged users for their AWS Account.
These users are administrators for key resources defined in the company.
There is now a mandate to enhance the security authentication for these users.
How can this be accomplished?
Click on the arrows to vote for the correct answer
A. B. C. D.Answer is A.
Option A is CORRECT because AWS recommends enabling MFA for privileged user accounts.
Option B is incorrect as versioning is applicable in S3 and not for IAM privileged users.
Options C is incorrect as accidental deletion is available for S3 and EC2 service.
There is no such solution for IAM accidental users' deletion.
Option D is incorrect as root users are different from privileged users.
The solution recommended does not work for privileged users.
For more information on IAM best practices, please visit the below URL.
https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.htmlThe best way to enhance security authentication for privileged users in an AWS account is to enable multi-factor authentication (MFA) for their user accounts. MFA requires an additional layer of authentication beyond the traditional username and password, such as a physical token or biometric identifier, which greatly reduces the risk of unauthorized access even if the username and password are compromised.
Option A is, therefore, the correct answer.
Option B, enabling versioning, has no relevance to user authentication and would not improve security in this context.
Option C, enabling accidental deletion, is also not relevant to user authentication and would not enhance security in this context.
Option D, disabling root access for users, could be an effective security measure, but it would only apply to the root account and would not address the authentication of privileged users who are administrators for key resources in the company. Therefore, it is not the best answer for the given scenario.