Which of the following is a recommended security practice for AWS accounts?

Enabling Multi-Factor Authentication (MFA) and rotating access keys regularly is a crucial security practice for AWS accounts. MFA adds an additional layer of security by requiring more than just a password to authenticate; it typically involves something the user knows (like a password) and something the user has (such as a mobile device with an authenticator app). This dual requirement significantly reduces the risk of unauthorized access, particularly if a password is compromised.

Regularly rotating access keys ensures that even if a key is leaked or exposed, its validity is only temporary. Access keys serve as credentials for programmatic access to AWS resources, and rotating them limits the time window during which a compromised key can be exploited. Together, these practices create a robust security posture that helps safeguard AWS accounts from unauthorized access and potential breaches.

The other options fail to support good security practices. Using simple passwords and sharing keys increases vulnerability, while disabling encryption can expose sensitive data. Using single-factor authentication does not offer the enhanced security that multi-factor authentication provides, making it less effective in protecting against unauthorized access.