Question #1020
Which of the following statements is true regarding the AWS account root user?
The root user's password is permanently set and cannot be altered.
The root user is the initial identity provided upon AWS account creation.
Only the root user has the capability to log in via the AWS Management Console.
Multi-factor authentication (MFA) can exclusively be applied to the root user.
Explanation
The correct answer is B. The AWS root user is the first identity created when an AWS account is established, granting full administrative access.
- Option A is incorrect because the root user's password can be changed via the AWS Management Console.
- Option C is incorrect because IAM users can also log in to the AWS Management Console if granted permissions.
- Option D is incorrect because MFA can be enabled for both the root user and IAM users.
Key points to remember: The root user has full account access, should be secured with MFA, and should not be used for daily tasks. Always use IAM users with least-privilege permissions instead.
Answer
The correct answer is: B