Your organization’s security policy requires that all privileged users either use frequently rotated passwords or one-time
access credentials in addition to username/password. Which two of the following options would allow an organization to
enforce this policy for AWS users? (Choose two.)
A.
Configure multi-factor authentication for privileged 1AM users
B.
Create IAM users for privileged accounts
C.
Implement identity federation between your organization’s Identity provider leveraging the 1AM Security Token Service
D.
Enable the IAM single-use password policy option for privileged users