IAM

Question 1

Max number of IAM user identities?

Answer 1

5000

Question 2

IAM roles are generally used for what purpose?

Answer 2

Unknown number or multiple principles not just one.
Multiple AWS users inside the same account.
Humans applications or services inside or outside of your account.
If you can’t identify the number of users or principles.
greater than 5000 users.
Access to resources on a temporary basis.

Question 3

An IAM role represents what?
You the user.
Or
A level of access to something in an account.

Answer 3

A level of access to some thing in an account

Question 4

An IAM user can be used for how many principles?

Answer 4

One or single

Question 5

Two types of permissions policies for IAM roles are?

Answer 5

Trust and Permissions Policy

Question 6

Trust Policy

Answer 6

Define which identities can assume a role.

AWS creates temporary security credentials for the IAM user assuming the role.

Question 7

Permissions Policy

Answer 7

Specifies which resources the temporary credentials are allowed to access

Question 8

STS: Secure Token Service

Answer 8

The operation used to assume the role to get security credentials

Question 9

What user identity should be used for emergency temporary access to a resource

Answer 9

IAM Role

Question 10

Business with 5500 users can assign IAM USER to each user?

Answer 10

No, use IAM Role (IAM USER has 5000 user max per account)

Question 11

Web Identity Federation

Answer 11

Assigns IAM Roles to 3rd party Web Identities (Google, FaceBook, Twitter, etc)

Question 12

Web Identity Federation scale?

Answer 12

Scales to hundreds of millions of users