Question #813
In AWS Identity and Access Management (IAM), adhering to the principle of ensuring users have only the minimum permissions required to perform their job functions is referred to as:
minimal access
just-in-time access
least privilege access
credential access
Explanation
The principle of granting users only the minimum permissions required to perform their job functions is known as least privilege access (Option C). This security best practice minimizes the risk of accidental or intentional misuse of permissions.
- Option A (minimal access) is not an official AWS term and is often used informally to describe the same concept, but AWS explicitly refers to it as 'least privilege.'
- Option B (just-in-time access) refers to temporary, time-bound permissions granted only when needed, which is a different concept.
- Option D (credential access) relates to managing authentication credentials, not permission policies.
Key takeaway: Always follow the 'least privilege' principle in IAM to enhance security by limiting permissions to the bare minimum required.
Answer
The correct answer is: C