IAM Flashcards

1
Q

IAM

IAM

A

Identity and Access Management
Create user accounts and control access

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Root User best practice

IAM

A

Use only for managing IAM

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Federation

IAM

A

Supports AD or SAML integration

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

MFA

IAM

A

Provides second factor for authentication

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Best practice

IAM

A

Identities are given minimum access to complete tasks

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

IAM Credentials report

IAM

A

Lists users and status of their credentials

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

IAM Access Advisor

IAM

A

Shows service permissions and last accessed for user

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

User

IAM Identity

A

Account for single individual

IAM Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Group

IAM Identity

A

Permission management for users

IAM Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Group nesting

IAM Identity

A

May not nest groups

IAM Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Group membership

IAM Identity

A

Users can be in many groups, or none

IAM Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Role

IAM Identity

A

AWS Service can be granted access to another AWS Service

IAM Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

IAM Policy

IAM

A

JSON document that defines permission for IAM Identity

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Who can manage

IAM Policy

A

Can be managed by AWS or by customer

IAM Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

IAM Policy structure (3)

IAM Policy

A
  • Version
  • ID
  • Statement

IAM Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Statement structure (4/6)

IAM Policy

A
  • SID
  • Effect
  • Principal
  • Action
  • Resource
  • Condition

IAM Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Version

IAM Policy

A

Policy language version

IAM Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Id

IAM Policy

A

Unique Identifier

IAM Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Statement

IAM Policy

A

Defines what the policy does

IAM Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Sid

IAM Policy Statement

A

Statement Identifier

IAM Policy Statement

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Effect

IAM Policy Statement

A

Alloy or deny

IAM Policy Statement

22
Q

Principal

IAM Policy Statement

A

Identity that policy applies to

IAM Policy Statement

23
Q

Action

IAM Policy Statement

A

List of allowed (or denied) Actions

IAM Policy Statement

24
Q

Resource

IAM Policy Statement

A

List of resources the actions apply to

IAM Policy Statement

25
Condition | IAM Policy Statement
Optional conditions that determine when the policy applies | IAM Policy Statement
26
Identity and Access Management Create user accounts and control access | IAM
IAM | IAM
27
Use only for managing IAM | IAM
Root User best practice | IAM
28
Supports AD or SAML integration | IAM
Federation | IAM
29
Provides second factor for authentication | IAM
MFA | IAM
30
Identities are given minimum access to complete tasks | IAM
Best practice | IAM
31
Lists users and status of their credentials | IAM
IAM Credentials report | IAM
32
Shows service permissions and last accessed for user | IAM
IAM Access Advisor | IAM
33
Account for single individual | IAM Identity
User | IAM Identity
34
Permission management for users | IAM Identity
Group | IAM Identity
35
May not nest groups | IAM Identity
Group nesting | IAM Identity
36
Users can be in many groups, or none | IAM Identity
Group membership | IAM Identity
37
AWS Service can be granted access to another AWS Service | IAM Identity
Role | IAM Identity
38
JSON document that defines permission for IAM Identity | IAM
IAM Policy | IAM
39
Can be managed by AWS or by customer | IAM Policy
Who can manage | IAM Policy
40
* Version * ID * Statement | IAM Policy
IAM Policy structure (3) | IAM Policy
41
* SID * Effect * Principal * Action * Resource * Condition | IAM Policy
Statement structure (4/6) | IAM Policy
42
Policy language version | IAM Policy
Version | IAM Policy
43
Unique Identifier | IAM Policy
Id | IAM Policy
44
Defines what the policy does | IAM Policy
Statement | IAM Policy
45
Statement Identifier | IAM Policy Statement
Sid | IAM Policy Statement
46
Alloy or deny | IAM Policy Statement
Effect | IAM Policy Statement
47
Identity that policy applies to | IAM Policy Statement
Principal | IAM Policy Statement
48
List of allowed (or denied) Actions | IAM Policy Statement
Action | IAM Policy Statement
49
List of resources the actions apply to | IAM Policy Statement
Resource | IAM Policy Statement
50
Optional conditions that determine when the policy applies | IAM Policy Statement
Condition | IAM Policy Statement