SCS-C03 · Question #103
SCS-C03 Question #103: Real Exam Question with Answer & Explanation
The correct answer is B: Use the Access Advisor tab in AWS Identity and Access Management (IAM). Search for Security. The Access Advisor feature in IAM provides information about the services that an IAM role or user has accessed and the last time they accessed each service. This feature shows when the IAM role last accessed AWS Security Hub. To find specific actions like DeleteInsight, you can
Question
A company is investigating actions that an IAM role performed. The company must find out when the role last accessed AWS Security Hub and when the role last used the DeleteInsight action in Security Hub. Which solution will provide this information?
Options
- AUse the checks for the security category in AWS Trusted Advisor. Search for the role and
- BUse the Access Advisor tab in AWS Identity and Access Management (IAM). Search for Security
- CUse AWS Identity and Access Management (IAM) to generate a credential report. Search the
- DCreate an analyzer in AWS Identity and Access Management Access Analyzer. Examine the
Explanation
The Access Advisor feature in IAM provides information about the services that an IAM role or user has accessed and the last time they accessed each service. This feature shows when the IAM role last accessed AWS Security Hub. To find specific actions like DeleteInsight, you can review CloudTrail logs, but Access Advisor is the first step to quickly see the last access to the
Community Discussion
No community discussion yet for this question.