AWS STS Security Token serve Flashcards

1
Q

IAM

A
  • identity and access management inside your AWS account
  • for users that you trust and belong to your company
  • You should use IAM Roles if you want to create temporary, limited-privilege credentials for your AWS resources. FALES

IAM Roles are sets of permissions making AWS service requests, which will be used by AWS services, but they do not provide temporary security credentials.. AWS Security Token Service (AWS STS) is a web service that enables you to request temporary, limited-privilege credentials for AWS Identity and Access Management (IAM) users or for users that you authenticate (federated users).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Organizations

A

manage multiple AWS account

Which of the following services can help you manage multiple AWS accounts?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

STS ; Security Token Service

A

Temporary, limited-privileges credential to access AWS resources

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Cognito

A

Create a database of users for your mobile and web applications

A company would like to centrally manage access to multiple AWS accounts and business applications. Which service can it use?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Directory Service

A

Integrate Microsoft active directory in AWS

A company would like to use their on-premises Microsoft Active Directory to connect to its AWS resources. Which service can it use?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

AWS manager Microsoft AD

A

created your own in AWS, manage users locally, support your own AD in AWS, mange user locally, supports MFA

  • establish trust connections with your on premises AD
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

AD connector

A

Directory gateway (proxy ) to redirect to on prem AD

user are managed on the on perms AD

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Simple AD

A

AD- compatible managed directory on AWS

cannot be joined with on-perm AD

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

SSO: single sign- on

A

one login for multiple AWS account & applications

  • A company just created a new mobile application and wants to add a simple and secure user sign-up, sign-in, and access control. Which AWS service can it use?
How well did you know this?
1
Not at all
2
3
4
5
Perfectly