AWS Certified SysOps Administrator SOA-C01 – Question018

When assessing an organization s use of AWS API access credentials which of the following three credentials should be evaluated? (Choose three.)

A.
Key pairs
B. Console passwords
C. Access keys
D. Signing certificates
E. Security Group memberships

Correct Answer: BCD

Explanation:

Explanation: AWS provides a number of authentication mechanisms including a console, account IDs and secret keys,
X.509 certificates, and MFA devices to control access to AWS APIs.
Console authentication is the most appropriate for administrative or manual activities, account IDs and secret keys for accessing REST-based interfaces or tools, and X.509 certificates for SOAP-based interfaces and tools. Your organization should consider the circumstances under which it will leverage access keys, x.509certificates, console passwords, or MFA devices