Identity Access Management (IAM) Exam Questions And Answers
0 view 0 purchase
Course
IAM
Institution
IAM
Which of the followings is not BEST PRACTICES for IAM? Choose all that apply.
1. Delete you root access key
2. Apply an IAM password policy
3. Follow the "Principal of Least Privilege"
4. Use Users to assign permissions
5. Don't create individual IAM users
6. Activate MFA on your Root Acc...
Identity Access Management (IAM) Exam
Questions And Answers
Which of the followings is not BEST PRACTICES for IAM? Choose all that apply.
1. Delete you root access key
2. Apply an IAM password policy
3. Follow the "Principal of Least Privilege"
4. Use Users to assign permissions
5. Don't create individual IAM users
6. Activate MFA on your Root Account
7. Create and use an IAM user with Admin privileges instead of the Root Account. - ANS
Use Users to assign permissions
Don't create individual IAM users
True or False
By default, any new IAM user you create in an AWS account is created with NO access to any
AWS services. - ANS True
What is the term used to describe this: "By default, any new IAM user you create in an AWS
account is created with NO access to any AWS services." - ANS Implicit Deny Rule
What is IAM? - ANS IAM is where you manage your AWS users, groups, and roles and
their access to AWS accounts and services.
IAM provides access and access permissions to .... - ANS AWS resources
IAM is ...... service to all the AWS regions, creating a user account will apply to all the ..... - ANS
global, regions
True or False
For all the users (except the Root user), permissions must be given that grant access to AWS
services. - ANS True
How do you grant access to AWS services? - ANS Through attaching/associating IAM
policies to the users or groups
How do you log into the console?
, How do you log into the CLI and SDK? - ANS Username and password associated with a
user or root user
Access keys or API keys
Is it possible to change/customize the user sign-in link? - ANS Yes - right on top of the IAM
page, you can click on the customize key to change the url.
Can IAM users share their credentials with each other? - ANS No - credentials should
never be shared with each other. Each user should have their unique credentials.
What is a policy? - ANS A policy is a document that formally states one or more
permissions. It's a JSON document.
What is the default setting for policies? - ANS By default, all permissions are implicitly
denied.
An ____ ___ always overrides an _____ ___ - ANS explicit deny, explicit allow
IAM provides pre-built policy templates to assign to users and groups. What are some policy
templates? - ANS 1. Administrator access: full access to ALL AWS resources
2. Power user access: Admin access except it does not allow user/group management
3. Read only access: Only view AWS resources
What is a visual editor? - ANS Using the visual editor, you can create a custom IAM
permission policies.
Can more than one policy be attached to a user, group, or role at the same time? - ANS
Yes, more than one policy can be attached to a user or group at the same time.
True or False:
Policies can be directly attached to AWS resources. - ANS False, policies cannot be
directly attached to AWS resources.
What is a condition used in IAM policies? - ANS The Condition element (or Condition
block) lets you specify conditions for when a policy is in effect. For example, you can specify
that only users from certain IP address can access the resource.
What is the default setting for IAM User permission? - ANS When first created, by default
an IAM User has an implicit deny for all AWS services - and does not have access to use them
until a policy granting allow access has been applied to the user or to the group the user
belongs to.
True or False
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller DocLaura. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $9.39. You're not tied to anything after your purchase.
