Exam AWS Certified Cloud Practitioner topic 1 question 364 discussion

https://docs.aws.amazon.com/cli/latest/userguide/cli-security-iam.html Although an IAM user requires a password to access an AWS service's console, that same IAM user requires an access key pair to perform the same operations using the AWS CLI.

C. Access keys The minimum security credentials that a user needs to control AWS services by using the AWS CLI are access keys. Access keys consist of an access key ID and a secret access key, which are used to sign programmatic requests that the user makes to AWS services. To create access keys, the user must have an AWS account and an IAM user that the user can use to sign in to the AWS Management Console, and the user must also have permissions to create and manage access keys. Once the user has access keys, the user can configure the AWS CLI with them, and the user will be able to make programmatic requests to AWS services. It's worth mentioning that AWS recommends that you use IAM users instead of the root user to interact with AWS, and that you use access keys in conjunction with multi-factor authentication (MFA) for added security.

This is so confusing...Reference: https://digitalcloud.training/aws-command-line-interface-aws-cli/#:~:text=The%20following%20items%20are%20required,generated%20by%20the%20IAM%20user - The following items are required to set up and manage AWS services with AWS CLI: 1. An AWS account (Option A) 2. IAM user credentials (Option A) 3. IAM access key pair generated by the IAM user (Option C)

To access AWS services with the AWS CLI, you need an AWS account and IAM credentials. When running AWS CLI commands, the AWS CLI needs to have access to those AWS credentials. To increase the security of your AWS account, we recommend that you do not use your root account credentials. You should create a user with least privilege to provide access credentials to the tasks you'll be running in AWS. Reference: https://docs.aws.amazon.com/cli/latest/userguide/getting-started-prereqs.html

Access keys are enough to control AWS services using the AWS CLI. Access keys are a set of two credentials: an access key ID and a secret access key. The access key ID is used to identify you to AWS, and the secret access key is used to sign requests to AWS. It is recommended to use key pairs to control AWS services using the AWS CLI instead of access keys. Key pairs are more secure than access keys because they require you to use a private key to authenticate with AWS.

The minimum security credentials that a user needs to control AWS services using the AWS CLI (Command Line Interface) are C. Access keys. Access keys consist of an Access Key ID and a Secret Access Key. These credentials are used to authenticate the user when making AWS CLI requests to interact with AWS services programmatically. It's important to securely manage and protect access keys because they provide programmatic access to your AWS resources. Users typically create access keys through the AWS Management Console or programmatically using IAM (Identity and Access Management) and then configure their AWS CLI with these keys to make authenticated requests to AWS services.

Key pair is required while connecting CLI

C. Access keys. You can use access keys to sign programmatic requests to the AWS CLI or AWS API (directly or using the AWS SDK). Access keys consist of two parts: an access key ID (for example, AKIAIOSFODNN7EXAMPLE) and a secret access key. You must use both the access key ID and secret access key together to authenticate your requests.

Access Key & Secret Key are needed to access AWS resources from AWS CLI

Access Key & Secret Key are used for using AWS CLI

C. Access keys To control AWS services using the AWS CLI, the user needs to have AWS access keys, which consist of an Access Key ID and a Secret Access Key. These credentials are used to authenticate the user's identity and authorize access to AWS services. The AWS access keys can be obtained by creating an IAM user and assigning appropriate permissions to the user's IAM role. It is recommended to create an IAM user with the minimum required permissions to access AWS services. AWS account user name and password are used for logging in to the AWS Management Console, but they are not sufficient to control AWS services using the AWS CLI. Multi-factor authentication (MFA) and key pairs are additional security measures that can be used to enhance security, but they are not mandatory for using the AWS CLI.

I vote C

C is the answer.

https://docs.aws.amazon.com/cli/latest/userguide/cli-security-iam.html Although an IAM user requires a password to access an AWS service's console, that same IAM user requires an ACCESS KEY pair to perform the same operations using the AWS CLI.

From what I have read online , key pairs are for users and access keys are for owners. If this is the case the answer should be D?

Access Key ID: This is a unique identifier that is used to identify the user or the user's IAM role when making API requests to AWS.

should be C - access keys