Amazon Exam BDS-C00 Topic 5 Question 79 Discussion

Actual exam question for Amazon's BDS-C00 exam

Question #: 79
Topic #: 5

You are managing the AWS account of a big organization. The organization has more than

1000+ employees and they want to provide access to the various services to most of the employees. Which of the below mentioned options is the best possible solution in this case?

AThe user should create a separate IAM user for each employee and provide access to them as per the policy

BThe user should create an IAM role and attach STS with the role. The user should attach that role to the EC2 instance and setup AWS authentication on that server

CThe user should create IAM groups as per the organization's departments and add each user to the group for better access control

DAttach an IAM role with the organization's authentication service to authorize each user for various AWS services

Show Suggested Answer

Suggested Answer: B

by Annabelle at Aug 29, 2023, 11:49 AM

Limited Time Offer

25%

Off

Get Premium BDS-C00 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Angella

14 days ago

That's a valid point, but I still think option C would be more efficient for managing access permissions for a large organization with over 1000 employees.

upvoted 0 times

...

Gregoria

14 days ago

Option A is way too much work for a company with over 1000 employees. Imagine creating and managing all those individual IAM users! No thanks!

upvoted 0 times

...

Sanda

17 days ago

Option D seems like a good idea too. Integrating the organization's authentication service with IAM roles could simplify the process and improve security.

upvoted 0 times

...

Selma

18 days ago

I disagree, I believe option A is more suitable as it provides individual access to each employee and ensures better security measures.

upvoted 0 times

...

Arlene

20 days ago

I think option C is the best solution. Creating IAM groups based on the organization's departments and adding each user to the appropriate group will make it easier to manage access control.

upvoted 0 times

...

Angella

27 days ago

I think option C is the best solution because it allows for better access control by organizing users into groups based on departments.

upvoted 0 times

...