What are the MOST secure ways to protect the AWS account root user of a recently opened AWS account? (Choose two.)

A. Use the AWS account root user access keys instead of the AWS Management Console

B. Enable multi-factor authentication for the AWS IAM users with the AdministratorAccess managed policy attached to them

C. Enable multi-factor authentication for the AWS account root user

D. Use AWS KMS to encrypt all AWS account root user and AWS IAM access keys and set automatic rotation to 30 days

E. Do not create access keys for the AWS account root user; instead, create AWS IAM users






 

Suggested Answer: BD

Community Answer: CE




This question is in SCS-C01 AWS Certified Security – Specialty Exam
For getting AWS Certified Security – Specialty Certificate


Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Amazon.
Trademarks, certification & product names are used for reference only and belong to Amazon.
The website does not contain actual questions and answers from Amazon's Certification Exam.