A company’s Security Auditor discovers that users are able to assume roles without using multi-factor authentication (MFA).
An example of a current policy being applied to these users is as follows:
The Security Auditor finds that the users who are able to assume roles without MFA are alt coming from the AWS CLI. These users are using long-term AWS credentials.
Which changes should a Security Engineer implement to resolve this security issue? (Select TWO.)
A)
B)
C)
D)
E)
A . Option A
B . Option B
C . Option C
D . Option D
E . Option E
Answer: A,D