Multiple Choice
A company has mandated the use of multi-factor authentication (MFA) for all IAM users, and requires users to make all API-calls using the CLI. However, users are not prompted to enter MFA tokens, and are able to run CLI commands without MFA. In an attempt to enforce MFA, the company attached an IAM policy to all users that denies API calls that have not been authenticated with MFA. What additional step must be taken to ensure that API calls are authenticated using MFA?
A) Enable MFA on IAM roles, and require IAM users to use role credentials to sign API calls.
B) Ask the IAM users to log into the AWS Management Console with MFA before making API calls using the CLI.
C) Restrict the IAM users to use of the console, as MFA is not supported for CLI use.
D) Require users to use temporary credentials from the get-session token command to sign API calls.
Correct Answer:
Verified
Correct Answer:
Verified
Q682: You can create a CloudWatch alarm that
Q683: What does Amazon EC2 provide?<br>A) A platform
Q684: A company is running a popular social
Q685: A SysOps Administrator is managing a Memcached
Q686: An organization has added 3 of his
Q688: You receive a frantic call from a
Q689: An application resides on multiple EC2 instances
Q690: An Application performs read-heavy operations on an
Q691: A user has a weighing plant. The
Q692: The networking team has created a VPC