Which task is the responsibility of AWS, according to the AWS shared responsibility model?
Set up multi-factor authentication (MFA) for each WorkSpaces user account.
Ensure the environmental safety and security of the AWS infrastructure that hosts WorkSpaces.
Provide security for WorkSpaces user accounts through AWS Identity and Access Management (IAM).
Configure AWS CloudTrail to log API calls and user activity.
Explanations:
Setting up multi-factor authentication (MFA) for WorkSpaces user accounts is the responsibility of the customer, not AWS. Customers manage user access and authentication configurations.
AWS is responsible for the environmental safety and security of the infrastructure that hosts WorkSpaces. This includes the physical and network security of the data centers where AWS services operate.
While AWS provides tools like IAM for managing permissions and access, configuring security settings for user accounts is the responsibility of the customer. Customers must implement and manage IAM policies.
Configuring AWS CloudTrail to log API calls and user activity is the responsibility of the customer. AWS provides the service, but customers must set it up to meet their logging and monitoring requirements.