Home › BCA Cloud Computing › cloudcomputing › cloudsecurity › What does the principle of least privilege recom…
What does the principle of least privilege recommend when assigning permissions in any cloud IAM system?
AGrant a user, role, or workload only the permissions strictly needed to accomplish its job, and nothing more
BGrant administrator access by default for convenience
CAllow only the root account to perform any action ever
DBlock every API call indefinitely with no exceptions
Answer & Solution
Correct answer: A. Grant a user, role, or workload only the permissions strictly needed to accomplish its job, and nothing more
Least privilege narrowly scopes permissions to the minimum. Default-administrator is the over-privileged anti-pattern; root-only and total-block are the opposite under-privileged anti-pattern.
Related questions
The defense-in-depth model recommends:A workload makes outbound HTTP requests to update some on-prem inventory. The on-prem systAn auditor needs to know who deleted a critical database resource last week. Which type ofWhich security model assumes that no network location is inherently trusted and verifies eAn organisation wants a single sign-on across AWS, Microsoft 365, and Salesforce so users Why is rotating credentials (passwords, access keys, certificates) on a schedule a best prA virtual firewall that controls allowed inbound and outbound traffic on a single VM in a A cloud provider's shared responsibility model on IaaS typically states that: