Which combination of actions will accomplish this?
(Choose two.)
Ensure the root user uses a strong password.
Enable multi-factor authentication to the root user.
Store root user access keys in an encrypted Amazon S3 bucket.
Add the root user to a group containing administrative permissions.
Apply the required permissions to the root user with an inline policy document.
Explanations:
Ensuring the root user has a strong password is a basic security measure that helps protect the account from unauthorized access. A strong password makes it significantly harder for attackers to gain access to the root account.
Enabling multi-factor authentication (MFA) for the root user adds an additional layer of security. Even if someone knows the password, they would still need the second factor (such as a temporary code from a mobile device) to access the account.
Storing root user access keys in an encrypted Amazon S3 bucket does not secure the root user account itself. Access keys should be avoided for the root user; instead, use IAM users with their own keys.
Adding the root user to a group with administrative permissions is not a secure practice. The root user should be used sparingly, and permissions should be managed through IAM users instead.
Applying permissions via an inline policy to the root user is not recommended. The root user should have all permissions by default, and it’s best practice to use IAM users for specific permissions instead of modifying the root user’s permissions.