IAM Flashcards
What are the 5 IAM best practices?
1 - Apply Multifactor Authentication (via QR or APP) 2 - Delete root access keys 3 - Create individuals IAM users 4 - Use groups to assign permissions 5 - Apply an IAM password policy
What is my root account?
It’s the e-mail address you used to set up your AWS account
How to assign permissions to groups?
By selecting policies to be attached to the group
Why two users can have the same set of permissions?
They can inherit it from the Group
What is a group policy?
Policies consist of a JSON
How to access credential reports? Why is it useful?
Use IAM credential reports to audit the permissions of users/accounts
What is generated in credential reports?
Passwords
Access Keys
MFA
Why using roles are better them access keys?
Because roles are much more secure and easy to manage. With access keys, a hacked machine can have access to the entire AWS infrastructure rather them Roles that only allow the permissions associated with that particular role.