Home / Amazon / CLF-C01 / Question 165

What does it mean to grant least privilege to AWS IAM users?

• It is granting permissions to a single user only.

• It is granting permissions using AWS IAM policies only.

• It is granting AdministratorAccess policy permissions to trustworthy users.

• It is granting only the permissions required to perform a given task.

When you create IAM policies, follow the standard security advice of granting least privilege, or granting only the permissions required to perform a task.Determine what users (and roles) need to do and then craft policies that allow them to perform only those tasks.https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html#grant-least-privilege