Which are security best practices that should be followed?
(Choose two.)
Grant the developer access to only the AWS resources needed to perform the job.
Share the AWS account root user credentials with the developer.
Add the developer to the administrator’s group in AWS IAM.
Configure a password policy that ensures the developer’s password cannot be changed.
Ensure the account password policy requires a minimum length.
Explanations:
Granting the developer access only to the necessary AWS resources follows the principle of least privilege, enhancing security.
Sharing the AWS account root user credentials is a security risk and violates best practices; root access should be restricted.
Adding the developer to the administrator’s group provides excessive permissions, which is not a best practice for security.
Configuring a password policy that prevents the developer from changing their password is a poor practice as it limits account security and management.
Requiring a minimum password length is a good security practice as it helps ensure stronger passwords and better account protection.