AWS SDK, IAM Roles & Policies

Question 1

Allows AWS EC2 instances to “learn about themselves” without using an IAM Role for that purpose

Answer 1

Metadata

Question 2

You can retrieve the IAM Role name from the metadata but what?

Answer 2

You CANNOT retrieve the IAM policy

Question 3

What is the metadata?

Answer 3

Info about the EC2 instance

Question 4

What is the userdata?

Answer 4

Launch script of the EC2 instance

Question 5

What is the internal IP for AWS (URL)?

Answer 5

169.254.169.254

Question 6

What does “\” mean?

Answer 6

Its more to it

Question 7

You want to perform actions on AWS directly from your applications code without using the CLI.

What should you use?

Answer 7

AWS SDK

Question 8

When do you use an SDK?

Answer 8

When coding against AWS Services such as DynamoDB or Amazon S3

Question 9

If you don’t specify or configure a default region for SDK then what happens?

Answer 9

us-east-1 will be chosen by default

Question 10

What is the proper way to provide credentials and permissions to an EC2 instance?

Answer 10

IAM Roles

Question 11

What does API stand for?

Answer 11

Application Programming Interfaces

Question 12

Software to software interfaces.

They allow different applications to talk to each other and exchange information or functionality

Answer 12

API

Question 13

Let’s you see how an IAM policy change might impact a principal’s access before you commit to making the change.

This ensures that the changes you’re making won’t cause a principal to lose access that they need.

Answer 13

Policy Simulator