A company uses SAML federation to grant users access to AWS accounts. A company workload that is in an isolated AWS account runs on immutable infrastructure with no human access to Amazon EC2. The company requires a specialized user known as a break glass user to have access to the workload AWS account and instances in the case of SAML errors. A recent audit discovered that the company did not create the break glass user for the AWS account that contains the workload.
The company must create the break glass user. The company must log any activities of the break glass user and send the logs to a security team.
Which combination of solutions will meet these requirements? (Choose two.)
kejam
Highly Voted 10 months, 1 week agoAamee
10 months, 1 week agocatblack
Most Recent 1 month, 2 weeks agoaescudero51
4 months agohelloworldabc
2 weeks, 1 day agominTwin
5 months, 1 week agomynickc
8 months, 1 week agovikasj1in
8 months, 3 weeks agoDaniel76
9 months, 1 week agobrpjp
9 months, 1 week agoyorkicurke
9 months, 2 weeks agotayman
9 months, 2 weeks agodexterryu
9 months, 2 weeks agodexterryu
9 months, 2 weeks agoAgboolaKun
10 months agoAamee
10 months ago[Removed]
10 months agomarco25
10 months, 1 week agoAamee
10 months, 2 weeks ago[Removed]
10 months, 2 weeks ago