0 votes
in AWS by

What best describes the “Principle of Least Privilege”? Choose the correct answer from the options given below.

A. All users should have the same baseline permissions granted to them to use basic AWS services.

B. Users should be granted permission to access only resources they need to do their assigned job.

C. Users should submit all access requests in written form so that there is a paper trail of who needs access to different AWS resources.

D. Users should always have a little more permission than they need.

1 Answer

0 votes
by

B. Users should be granted permission to access only resources they need to do their assigned job.

Explanation : 
The principle means giving a user account only those privileges which are essential to perform its intended function. For example, a user account for the sole purpose of creating backups does not need to install the software. Hence, it has rights only to run backup and backup-related applications. 
For more information on the principle of least privilege, please refer to the following link: https://en.wikipedia.org/wiki/Principle_of_least_privilege
Options A, C, and D are incorrect. These actions would not adhere to the Principle of Least Privilege.
 
...