SAA-C03 · Question #528
SAA-C03 Question #528: Real Exam Question with Answer & Explanation
Sign in or unlock SAA-C03 to reveal the answer and full explanation for question #528. The question stem and answer options stay visible for context.
Question
A company uses an organization in AWS Organizations to manage a multi-account landing zone. The company requires all users who access AWS accounts in the organization to use a centralized identity system that follows the principle of least privilege for operational tasks. The company currently uses an external identity provider (IdP). Which combination of solutions will meet these requirements? (Select TWO.)
Options
- AUse AWS Identity and Access Management (IAM) to create IAM users and IAM user groups in
- BCreate permission sets in AWS IAM Identity Center. Assign the appropriate permission sets to the
- CAssign each IAM user to an IAM role by using an inline IAM policy based on operational duties.
- DConfigure a SAML identity provider in AWS Identity and Access Management (IAM) in each AWS
- EEnable AWS IAM Identity Center in the organization management account. Create user accounts
Unlock SAA-C03 to see the answer
You've previewed enough free SAA-C03 questions. Unlock SAA-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.