# Hands-on Labs & Final Challenge

### **🔹 Week 6: Hands-on Labs & Final Challenge**

#### **Scenario:**

SecureCart’s security team must **audit and enforce security best practices across all IAM resources**, ensuring compliance and least privilege.

#### **Final Study Group Challenges:**

✅ **Scenario 1:** Secure IAM Users & Enforce MFA\
✅ **Scenario 2:** Implement IAM Roles for Secure Application Access\
✅ **Scenario 3:** Apply SCPs to Prevent Security Misconfigurations in Multi-Account Setup\
✅ **Scenario 4:** Secure AWS Federated Access Using AWS IAM Identity Center\
✅ **Scenario 5:** Use IAM Access Analyzer to Detect Excessive Permissions

🔹 **Outcome:** Learners will **demonstrate real-world AWS identity and access security implementation skills**.

***

### **📚 Recommended Study Resources**

✅ **AWS Well-Architected Framework – Security Pillar**\
✅ **AWS Identity & Access Management (IAM) Best Practices**\
✅ **AWS Security Hub & AWS Config for Security Monitoring**\
✅ **AWS Organizations & AWS Control Tower for Multi-Account Security**\
✅ **AWS IAM Identity Center (SSO) & Federation Documentation**


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://awsinpractice.itassist.com/study-group/aws-certified-solutions-architect-associate/domain-1-design-secure-architectures/copy-of-task-statement-1.1-design-secure-access-to-aws-resources/hands-on-labs-and-final-challenge.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.