Which AWS service or feature should the company use to meet these authentication requirements?

By:
In: CLF-C01
Tagged:
With: 2 Comments
A company is developing an application that uses multiple AWS services.The application needs to use temporary, limited-privilege credentials for authentication with other AWS APIs.

Which AWS service or feature should the company use to meet these authentication requirements?

Amazon API Gateway

IAM users

AWS Security Token Service (AWS STS)

IAM instance profiles

Explanations:

Amazon API Gateway is used to create, publish, maintain, and secure APIs at scale, but it does not provide temporary, limited-privilege credentials for AWS services.

IAM users are long-term credentials associated with individual users and do not provide temporary, limited-privilege access, which is required in this case.

AWS Security Token Service (AWS STS) provides temporary, limited-privilege credentials that allow applications to access AWS services securely and meet the authentication needs.

IAM instance profiles are used to provide temporary credentials to EC2 instances, but they are limited to EC2, not for a wide range of AWS APIs required by the application.

2026-03-27

2 Comments

  1. Billy
    Author

    I compute that the answer is:
    AWS Security Token Service (AWS STS)

  2. Abigail
    Author

    I judge that the answer is:
    AWS Security Token Service (AWS STS)

Leave a Reply

Your email address will not be published. Required fields are marked *

five − 2 =