AWS - Certified Solutions Architect Associate Flashcards
IAM stands for?
IAM & AWS CLI
Identity and Access Management
Is IAM a Global service?
IAM & AWS CLI
Yes, it is
What the ‘Root’ account is used for?
IAM & AWS CLI
Only for setting up an AWS account for the first time. It is not meant to be shared or used afterwards.
Is the ‘Root’ account created by default?
IAM & AWS CLI
Yes, it is
What is a ‘User’?
IAM & AWS CLI
People within your organization
What is a ‘Group’?
IAM & AWS CLI
It is a collection of users who share permissions over resources
Can ‘Groups’ contain other groups?
IAM & AWS CLI
No, they cannot
Can users belong to multiple groups?
IAM & AWS CLI
Yes, they can. Although, it is not necessary for users to belong to a group
What are ‘Policies’?
IAM & AWS CLI
JSON documents assigned to groups, and they define the set of permissions over resources
What is the ‘Least Privilege Principle’?
IAM & AWS CLI
Do not give more permissions than a user needs
This is a best practice applied on AWS
What are AWS’ credential types?
IAM & AWS CLI
- Access key - Programatic access
- Password -AWS Management Console access
What the ‘Account alias’ is used for?
IAM & AWS CLI
Customize your AWS account’s sign-in URL
What is an ‘In-line’ policy?
IAM & AWS CLI
It is a policy only attached to a single user
What is ‘Policy inheritance’ on IAM?
IAM & AWS CLI
When users in a group acquire the set of permissions defined on the group(s) they belong to
An IAM Policy consists of
- Version - “2012-10-17”
- Id - optional identifier
- Statement - one or more individual statements
