AWS DevOps Engineer Professional Practice Test

What must be done to allow users access to AWS CodeCommit repositories via SSH Git access?

• A. Users must download SSH client software
• B. Users' public keys must be uploaded to the IAM Security Credential tab
• C. Users must create new repositories to gain access
• D. Users need to have root access to the AWS Account

The correct answer is: Users' public keys must be uploaded to the IAM Security Credential tab

To enable users to access AWS CodeCommit repositories via SSH Git access, it is essential to upload users' public SSH keys to their IAM (Identity and Access Management) accounts. This process involves associating the public keys with IAM user accounts, allowing AWS to authenticate users when they attempt to connect to CodeCommit repositories using SSH. When a user tries to connect over SSH, AWS checks if the presented SSH key matches the public key stored in their IAM settings. If there is a match, access is granted based on the user's permissions configured within their IAM role or policy. This method ensures secure and managed access to CodeCommit without needing users to share sensitive information. The other options do not accurately address the requirements for SSH access to CodeCommit. For instance, while an SSH client is necessary (first option), having it alone does not grant access without the appropriate key registration process. Creating new repositories (third option) is irrelevant, as access is tied to existing repositories and user authentication rather than repository creation. Lastly, root access (fourth option) is not required for users to access CodeCommit; IAM policies can be configured to provide necessary permissions to non-root users.