Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Fully Merged AWS SA Prep > IAM 101 > Flashcards

IAM 101 Flashcards

1
Q

What does IAM stand for?

A

Identity Access Management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are some of the features of IAM (9)

A
  • Centralized control of your AWS account
  • Shared Access to your AWS account
  • Granular Permissions
  • Identity Federation (i.e. Active Directory, Facebook, LinkedIn, etc.)
  • Multifactor authentication (you should ALWAYS do this)
  • Temporary access for users/devices and services when necessary
  • Custom Password rotation policy
  • Integration w/ many AWS services
  • Supports PCI DSS compliance
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are Users and Groups? What is the key relationship between them?

A
  • Users are end users (people, employees of an organization, etc.)
  • Groups are collections of users.
  • Each user in the group inherits the permissions of the group.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are IAM Policies?

A

Policies are comprised of policy documents, which are JSON docs that give permissions to a user, group, or role.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is a Role?

A
  • A Role is a custom “label” assigned to an AWS resource. - It allows one part of AWS to do something with another part.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How broad is the IAM namespace?

A

IAM has a GLOBAL namespace

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which account is the root account in IAM?

A
  • The root account is the account created when you first setup your AWS account.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are Access Key ID and Secret Access Key? How are you assigned them? What can they be used for?

A
  • Access Key ID and Secret Access Key are assigned to new users upon creation. - Access Key ID and Secret Access Key are used for *programmatic access* (AWS APIs and CLI)…think of it like the username/password for programmatic access - Access Key ID and Secret Access Key can NOT be used to log in to the console. - You can only view them ONCE. If you lose them, you have to regenerate them.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What permissions does a user have when first created?

A

A New user has NO permissions when first created (think least privileges)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

How would I set up to be automatically notified if my account spending goes over a certain amount?

A

Create a billing alarm in CloudWatch

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

At a very high level, what does IAM do?

A

IAM allows you to manage users and their level of access to the AWS console

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What access does the root account have?

A

The root account has complete admin access (god mode)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Fully Merged AWS SA Prep (52 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions