Section 19 - Advanced Identity Flashcards
AWS STS. STS stands for
Special Token System
Social Tokening System
Security Token Service
Service Tokenining Security
Security Token Service
From an exam perspective, the main function of AWS STS (Security Token Service)
provide token to team of users
provide a security token
provide a token that’s secure
to provide short term credentials that allow temporary access to AWS resources
to provide short credentials that allow temporary access to AWS resources
With AWS STS (Security Token Service), what determines when the temporary credentials expire
they expire 1 day after creation
the user that created the credential sets the expiration
they expire after 1 hour
they expire after 3 days
the user that created the credential sets the expiration
Use cases for AWS STS (Security Token Service) - choose three
- Access to RDS
- IAM roles for cross/same account access
- Identify federation - provide user identify in external systems with temporary access to AWS resources
- Access to Fargate
- IAM roles for EC2 - temp credentials for EC2 instances to access AWS resources
- IAM roles for cross/same account access
- Identify federation - provide user identify in external systems with temporary access to AWS resources
- IAM roles for EC2 - temp credentials for EC2 instances to access AWS resources
This services lets you create user accounts for external users using your mobile and web applications
AWS ExternalAlias
AWS Cognito
AWS InCognito
AWS AliasCognito
AWS Cognito
When you log into an app or website using your FB, Google, or LinkedIn accounts, what AWS service that likely a result of?
AWS ExternalAlias
AWS Cognito
AWS InCognito
AWS AliasCognito
AWS Cognito
Allows integration with Microsoft Active Directory
AWS ActiveDirectory
AWS ActiveDirectoryBridge
AWS Directory Services
AWS MicrosoftBridge
AWS Directory Services
Successor to AWS Single Sign-On
AWS IAM Center
AWS Single Sign On Duex
AWS Sign on
AWS Identity Center
AWS Identify Center
Allows one sign in to the following
- AWS Accounts in AWS Organizations
- Business cloud applications (e.g. Salesforce, Box, Microsoft 365, etc)
- SAML2.0-enabled applications
- EC2 Windows instances
AWS IAM Center
AWS Single Sign On Duex
AWS Sign on
AWS Identity Center
AWS Identify Center