IAM Flashcards

1
Q

What are the 5 IAM best practices?

A
1 - Apply Multifactor Authentication (via QR or APP)
2 - Delete root access keys
3 - Create individuals IAM users
4 - Use groups to assign permissions
5 - Apply an IAM password policy
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is my root account?

A

It’s the e-mail address you used to set up your AWS account

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

How to assign permissions to groups?

A

By selecting policies to be attached to the group

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Why two users can have the same set of permissions?

A

They can inherit it from the Group

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is a group policy?

A

Policies consist of a JSON

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How to access credential reports? Why is it useful?

A

Use IAM credential reports to audit the permissions of users/accounts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is generated in credential reports?

A

Passwords
Access Keys
MFA

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Why using roles are better them access keys?

A

Because roles are much more secure and easy to manage. With access keys, a hacked machine can have access to the entire AWS infrastructure rather them Roles that only allow the permissions associated with that particular role.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly