Which actions represent best practices for using AWS IAM?
(Choose two.)
Configure a strong password policy.
Share the security credentials among users of AWS accounts who are in the same Region.
Use access keys to lag in to the AWS Management Console.
Rotate access keys on a regular basis.
Avoid using IAM roles to delegate permissions.
Explanations:
Configuring a strong password policy ensures that users create secure passwords, enhancing the security of the AWS environment. This is a best practice for IAM.
Sharing security credentials is a security risk and goes against best practices. Each user should have their own unique credentials.
Using access keys to log in to the AWS Management Console is not recommended. AWS Management Console logins should use usernames and passwords, not access keys.
Rotating access keys regularly helps reduce the risk of keys being compromised. It’s a security best practice to rotate keys to maintain safe access.
IAM roles should be used to delegate permissions, as they provide temporary, secure access without needing long-term credentials. Avoiding IAM roles is not a best practice.