CLF-C02 - Security and Compliance - Section 2.6
Understand how to protect the root user and apply authentication methods such as multi-factor authentication, AWS IAM Identity Center and federation, and where to store credentials securely.
Understand that the AWS account root user has unrestricted access and should be protected by enabling multi-factor authentication and avoiding its use for day-to-day tasks. Recognise IAM Identity Center for centralised single sign-on access across accounts, federation for connecting external identity providers, and AWS Secrets Manager for secure, audited storage of credentials and secrets.
Root user protectionMulti-factor authenticationIAM Identity CenterAWS Secrets Manager
More in this domain
Back to all Security and Compliance objectives, or the CLF-C02 cert hub.
Examworthy is not affiliated with or endorsed by Amazon Web Services. Original, blueprint-aligned practice material only.