An engineering team is developing and deploying AWS Lambda functions. The team needs to create roles and manage policies in AWS IAM to configure the permissions of the Lambda functions.
How should the permissions for the team be configured so they also adhere to the concept of least privilege?
A . Create an IAM role with a managed policy attached Allow the engineering team and the Lambda functions to assume this role
B . Create an IAM group for the engineering team with an lAMFullAccess policy attached
Add all the users from the team to this IAM group
C . Create an execution role for the Lambda functions. Attach a managed policy that has permission boundaries specific to these Lambda functions
D . Create an IAM role with a managed policy attached that has permission boundaries specific to the Lambda functions Allow the engineering team to assume this role.
Answer: A
Leave a Reply