SOA-C03 - Security and Compliance - Section 4.1
Implement AWS Identity and Access Management users, roles, policies, multi-factor authentication, federation and policy conditions for least-privilege access.
Implement least-privilege access using IAM roles, identity-based and resource-based IAM policies, multi-factor authentication enforcement, and policy conditions that restrict actions by IP address, time, or MFA presence. Distinguish between identity-based policies attached to a principal and resource-based policies attached to the resource.
IAM rolesIAM policiesMulti-factor authenticationPolicy conditions
More in this domain
Back to all Security and Compliance objectives, or the SOA-C03 cert hub.
Examworthy is not affiliated with or endorsed by Amazon Web Services. Original, blueprint-aligned practice material only.