Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS IAM > IAM 101 > Flashcards

IAM 101 Flashcards

1
Q

Users

A

End Users

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Groups

A

Collection of users under one set of permissions (or policies)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Roles

A

You create roles and assign them to AWS resources

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Does IAM give you centralized control of your AWS account?

A

yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Does IAM provide shared access to your AWS account?

A

yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Does IAM provide granular permissions

A

yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Does IAM provide identity federation to connect to Active Directory, Facebook, LinkedIN, etc.?

A

yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Does IAM provide temporary access for users/devices if needed?

A

yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Does IAM let you create & customize your own password rotation policy?

A

yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Does IAM support PCI DSS compliance?

A

yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Policies (Policy Documents)

A

document that defines one or more permissions. Attach policies to users, groups or roles

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

How do you apply a policy?

A

Attach policies to users, groups or roles

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Policy Documents

A

Apply to users, groups, roles
made up of JSON
key-value pair: attribute and value (version:date) (effect:allow) (action:*)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Is IAM universal (global)

A

yes
it doesn’t apply to regions at this time
user, group or role is consistent across all regions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

root account

A

the account created when first setting up your AWS account

Only account that has complete admin access by default

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What permissions do new users have when first created?

A

none

17
Q

What two things are new users assigned when first created (for programmatic access)

A

Access Key ID

Secret Access Keys

18
Q

Can you use the Access Key ID and SecretAccess Key to log in to the console?

A

No.
You need a password to login to the console
You can only use these to access from the CLI or via API’s

19
Q

How many times can you view the Access Key ID & SecretAccess Key?

A

Once. Can download them to CSV

If you lose them, you have to regenerate them

20
Q

Setup MFA on root account

A

Otherwise get warnings

21
Q

When do you use the Access key ID and Secret Access Key?

A

When programmatically accessing AWS

cannot use username and password for this

22
Q

Examples of IAM Roles

A

IAM user in other account
Code running on EC2 instance that acts on AWS resources
AWS Service that acts on your resources
Users in directory linked with SAML for federation

23
Q

What’s special about role keys

A

they’re valid for short durations

AWS IAM (2 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions