Who can manage the access keys of the AWS account root user?
IAM users in the same account that have been granted permission
IAM roles in any account that have been granted permission
IAM users and roles that have been granted permission
The AWS account owner
Explanations:
IAM users can manage their own access keys but cannot manage the root user’s access keys unless specifically granted permissions, which is not typically the case for the root user.
IAM roles in other accounts cannot manage the access keys of the AWS account root user; permissions are limited to the same account.
While IAM users and roles can manage their own access keys, they cannot manage the root user’s access keys unless they have explicit permissions, which is not standard practice.
Only the AWS account owner (the root user) can manage the access keys of the AWS account root user.