IAM Flashcards

1
Q

IAM

IAM

A

Identity and Access Management
Create user accounts and control access

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Root User best practice

IAM

A

Use only for managing IAM

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Federation

IAM

A

Supports AD or SAML integration

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

MFA

IAM

A

Provides second factor for authentication

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Best practice

IAM

A

Identities are given minimum access to complete tasks

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

IAM Credentials report

IAM

A

Lists users and status of their credentials

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

IAM Access Advisor

IAM

A

Shows service permissions and last accessed for user

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

User

IAM Identity

A

Account for single individual

IAM Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Group

IAM Identity

A

Permission management for users

IAM Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Group nesting

IAM Identity

A

May not nest groups

IAM Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Group membership

IAM Identity

A

Users can be in many groups, or none

IAM Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Role

IAM Identity

A

AWS Service can be granted access to another AWS Service

IAM Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

IAM Policy

IAM

A

JSON document that defines permission for IAM Identity

IAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Who can manage

IAM Policy

A

Can be managed by AWS or by customer

IAM Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

IAM Policy structure (3)

IAM Policy

A
  • Version
  • ID
  • Statement

IAM Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Statement structure (4/6)

IAM Policy

A
  • SID
  • Effect
  • Principal
  • Action
  • Resource
  • Condition

IAM Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Version

IAM Policy

A

Policy language version

IAM Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Id

IAM Policy

A

Unique Identifier

IAM Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Statement

IAM Policy

A

Defines what the policy does

IAM Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Sid

IAM Policy Statement

A

Statement Identifier

IAM Policy Statement

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Effect

IAM Policy Statement

A

Alloy or deny

IAM Policy Statement

22
Q

Principal

IAM Policy Statement

A

Identity that policy applies to

IAM Policy Statement

23
Q

Action

IAM Policy Statement

A

List of allowed (or denied) Actions

IAM Policy Statement

24
Q

Resource

IAM Policy Statement

A

List of resources the actions apply to

IAM Policy Statement

25
Q

Condition

IAM Policy Statement

A

Optional conditions that determine when the policy applies

IAM Policy Statement

26
Q

Identity and Access Management
Create user accounts and control access

IAM

A

IAM

IAM

27
Q

Use only for managing IAM

IAM

A

Root User best practice

IAM

28
Q

Supports AD or SAML integration

IAM

A

Federation

IAM

29
Q

Provides second factor for authentication

IAM

A

MFA

IAM

30
Q

Identities are given minimum access to complete tasks

IAM

A

Best practice

IAM

31
Q

Lists users and status of their credentials

IAM

A

IAM Credentials report

IAM

32
Q

Shows service permissions and last accessed for user

IAM

A

IAM Access Advisor

IAM

33
Q

Account for single individual

IAM Identity

A

User

IAM Identity

34
Q

Permission management for users

IAM Identity

A

Group

IAM Identity

35
Q

May not nest groups

IAM Identity

A

Group nesting

IAM Identity

36
Q

Users can be in many groups, or none

IAM Identity

A

Group membership

IAM Identity

37
Q

AWS Service can be granted access to another AWS Service

IAM Identity

A

Role

IAM Identity

38
Q

JSON document that defines permission for IAM Identity

IAM

A

IAM Policy

IAM

39
Q

Can be managed by AWS or by customer

IAM Policy

A

Who can manage

IAM Policy

40
Q
  • Version
  • ID
  • Statement

IAM Policy

A

IAM Policy structure (3)

IAM Policy

41
Q
  • SID
  • Effect
  • Principal
  • Action
  • Resource
  • Condition

IAM Policy

A

Statement structure (4/6)

IAM Policy

42
Q

Policy language version

IAM Policy

A

Version

IAM Policy

43
Q

Unique Identifier

IAM Policy

A

Id

IAM Policy

44
Q

Defines what the policy does

IAM Policy

A

Statement

IAM Policy

45
Q

Statement Identifier

IAM Policy Statement

A

Sid

IAM Policy Statement

46
Q

Alloy or deny

IAM Policy Statement

A

Effect

IAM Policy Statement

47
Q

Identity that policy applies to

IAM Policy Statement

A

Principal

IAM Policy Statement

48
Q

List of allowed (or denied) Actions

IAM Policy Statement

A

Action

IAM Policy Statement

49
Q

List of resources the actions apply to

IAM Policy Statement

A

Resource

IAM Policy Statement

50
Q

Optional conditions that determine when the policy applies

IAM Policy Statement

A

Condition

IAM Policy Statement