Who is responsible for managing IAM user access and secret keys according to the AWS shared responsibility model?

By:
In: CLF-C02
Tagged:
With: 1 Comment

Who is responsible for managing IAM user access and secret keys according to the AWS shared responsibility model?

IAM access and secret keys are static, so there is no need to rotate them.

The customer is responsible for rotating keys.

AWS will rotate the keys whenever required.

The AWS Support team will rotate keys when requested by the customer.

Explanations:

IAM access and secret keys are not static and should be rotated regularly to maintain security. Leaving them unchanged can lead to potential vulnerabilities.

According to the AWS shared responsibility model, customers are responsible for managing IAM user access, including rotating access keys to ensure secure access management.

AWS does not automatically rotate IAM user access keys. It is the responsibility of the customer to implement key rotation practices for security purposes.

The AWS Support team does not rotate keys on behalf of the customer; key management is the customer’s responsibility, including requests for rotation or creation of new keys.

2025-10-13

1 Comment

  1. Harold
    Author

    I believe the answer is:
    The customer is responsible for rotating keys.

Leave a Reply

Your email address will not be published. Required fields are marked *

17 + 14 =