A company runs all its business applications in the AWS Cloud. The company uses AWS Organizations to manage multiple AWS accounts.
A solutions architect needs to review all permissions that are granted to IAM users to determine which IAM users have more permissions than required.
Which solution will meet these requirements with the LEAST administrative overhead?

A. Use Network Access Analyzer to review all access permissions in the company's AWS accounts.

B. Create an AWS CloudWatch alarm that activates when an IAM user creates or modifies resources in an AWS account.

C. Use AWS Identity and Access Management (IAM) Access Analyzer to review all the company’s resources and accounts.

D. Use Amazon Inspector to find vulnerabilities in existing IAM policies.








 

Suggested Answer: C

Community Answer: C




This question is in SAA-C03 exam 
For getting AWS Certified Solutions Architect Associate Certificate


Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Amazon.
Trademarks, certification & product names are used for reference only and belong to Amazon.
The website does not contain actual questions and answers from Amazon's Certification Exam.