Which changes should a Security Engineer implement to resolve this security issue?

A company’s Security Auditor discovers that users are able to assume roles without using multi-factor authentication (MFA).

An example of a current policy being applied to these users is as follows:

The Security Auditor finds that the users who are able to assume roles without MFA are alt coming from the AWS CLI. These users are using long-term AWS credentials.

Which changes should a Security Engineer implement to resolve this security issue? (Select TWO.)

A)

B)

C)

D)

E)
A . Option A
B . Option B
C . Option C
D . Option D
E . Option E

View Answer

Answer: A,D