An engineering team is developing and deploying AWS Lambda functions. The team needs to create roles and manage policies in AWS IAM to configure the permissions of the Lambda functions. How should the permissions for the team be configured so they also adhere to the concept of least privilege?
A) Create an IAM role with a managed policy attached. Allow the engineering team and the Lambda functions to assume this role.
B) Create an IAM group for the engineering team with an IAMFullAccess policy attached. Add all the users from the team to this IAM group.
C) Create an execution role for the Lambda functions. Attach a managed policy that has permission boundaries specific to these Lambda functions.
D) Create an IAM role with a managed policy attached that has permission boundaries specific to the Lambda functions. Allow the engineering team to assume this role.
Correct Answer:
Verified
Q364: A solutions architect must analyze and update
Q365: A company is using Amazon Route 53
Q366: A company has multiple applications that use
Q367: A development team is deploying a new
Q368: A company recently launched Linux-based application instances
Q370: A recently created startup built a three-tier
Q371: A company is using Amazon DynamoDB with
Q372: A company is planning to transfer multiple
Q373: A company provides an online service for
Q374: A company stores 200 GB of data
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents