chapter 5 Flashcards
How do you lock down your account’s root user and why?
Make sure your root user has a strong password that is MFA-enabled and is never used for day-to-day administration tasks.
To reduce your exposure to risk.
What is the proper way to enforce the use of strong passwords for all your users?
Set an IAM password policy to force longer passwords using uppercase and lowercase letters, numbers, and non-standard characters.
How does AWS allow you to manage access credentials for EC2 key pairs, secret access keys, and encryption keys?
How do you provide (federated) access to your AWS resources based on third-party authentication systems like Google?
Using standards such as SAML 2.0 and Microsoft’s Active Directory, you can incorporate external authentication into your AWS infrastructure.
Making it easy for users of your mobile application to retrieve data from a DynamoDB database.
What is the importance of the that AWS managed Key Management Service (KMS) encryption keys?
They are used across a wide range of AWS services, including EBS, RDS, DynamoDB, and S3.
What is the value of AWS Artifact as a compliance information resource?
It provides access to official documentation on the compliance of AWS infrastructure relating to any one of dozens of government or industry security standards.
