Differences

This shows you the differences between two versions of the page.

--- aws:security:iam:best-practices [2025/12/28 13:39] – created phong2018
+++ aws:security:iam:best-practices [2025/12/28 13:40] (current) – phong2018
@@ Line 8: / Line 8: @@
   * Enforce least privilege.
-**Top exam best practices (from the question):**
+**Top exam best practices:**
   * Enable [[aws:security:mfa|MFA]] for privileged users (admins / power users).
   * Configure [[aws:security:cloudtrail|CloudTrail]] to log all IAM actions.
-**Common wrong practices (exam traps):**
+**Common wrong practices:**
   * Don’t use long-term user credentials for EC2; use [[aws:security:iam:instance-profile|Instance Profile (IAM Role)]].
   * Don’t grant maximum privileges; follow [[aws:security:iam:least-privilege|Least Privilege]].