Question 133 of 474 from exam DVA-C01: AWS Certified Developer

Question 133 of 474 from exam DVA-C01: AWS Certified Developer - Associate

Prev Question Next Question

An application is making a request to AWS STS for temporary access credentials.

Below is the response being received. Which of the following is TRUE with regards to the above response?

A. TheSecretAccessKey can be used like Access keys to make request to resources.

B. The application will assume the role of arn:aws:sts::123456789012:assumed-role/demo/John

C. The session token will be valid for the lifetime of the application.

D. The Request ID can be used to make requests to access other AWS resources.

Click on the arrows to vote for the correct answer

A. B. C. D.

Answer - B.

Some of the aspects that get incorporated in the call to STS are.

The Amazon Resource Name (ARN) of the role that the app should assume.

The duration, which specifies the duration of the temporary security credentials.

A role session name, which is a string value that you can use to identify the session.

This value can be captured and logged by CloudTrail to help you distinguish between your role users during an audit.

Options A and D are incorrect because you need the session token to make requests to access other AWS resources.

Option C is incorrect because these tokens are short-lived.

For more information on temporary access credentials, please refer to the below URL-

Prev Question Next Question