Which AWS service or feature should the company use to meet this requirement?

By: study aws cloud

Tagged: Cloud Practitioner

With: 1 Comment

A company wants to centrally manage its employee’s access to multiple AWS accounts.

Which AWS service or feature should the company use to meet this requirement?

AWS Identity and Access Management Access Analyzer

AWS Secrets Manager

AWS IAM Identity Center

AWS Security Token Service (AWS STS)

Explanations:

AWS Identity and Access Management Access Analyzer helps identify permissions that can be removed from IAM policies but does not provide a centralized way to manage access across multiple AWS accounts.

AWS Secrets Manager is primarily used for managing secrets, such as database credentials and API keys, and does not handle user access management across AWS accounts.

AWS IAM Identity Center (formerly AWS Single Sign-On) enables centralized management of user access across multiple AWS accounts and applications, making it the best choice for managing employee access.

AWS Security Token Service (AWS STS) allows for the creation of temporary credentials for IAM users but does not provide a centralized management system for user access across multiple AWS accounts.

Previous Post: Which of the following are benefits of building this app in the AWS Cloud?

Next Post: How can a solutions architect improve the performance of the image upload process?

1 Comment

Author

I have a feeling that the answer is:
AWS IAM Identity Center

Carol

12 hours ago

Permalink

Reply

Leave a Reply Cancel reply