Which AWS service or feature should the company use to meet this requirement?
AWS Identity and Access Management Access Analyzer
AWS Secrets Manager
AWS IAM Identity Center
AWS Security Token Service (AWS STS)
Explanations:
AWS Identity and Access Management Access Analyzer helps identify permissions that can be removed from IAM policies but does not provide a centralized way to manage access across multiple AWS accounts.
AWS Secrets Manager is primarily used for managing secrets, such as database credentials and API keys, and does not handle user access management across AWS accounts.
AWS IAM Identity Center (formerly AWS Single Sign-On) enables centralized management of user access across multiple AWS accounts and applications, making it the best choice for managing employee access.
AWS Security Token Service (AWS STS) allows for the creation of temporary credentials for IAM users but does not provide a centralized management system for user access across multiple AWS accounts.