securing your aws resources Flashcards
what is the purpose of aws identity access management?
a web service that helps you securely control access to AWS resources
what is are strategies for protecting the root user? Hint: there are three
creating a complex password
implementing multi-factor authentication and,
for most administration activities, use IAM users instead
where can you configure a password policy?
the account settings section on the IAM dashboard
which strategy adds a second layer of security to your logins?
MFA
what are access keys?
long-term credentials for an IAM user or the AWS account root user
where do you go to generate a new set of access keys?`
logged into the AWS Management Console from the Security Credentials page
what does SSH stand for?
secure shell
what is the purpose of SSH?
a protocol that manages the encryption and decryption steps in the process as long as compatible keys are present at both ends of the connection
what is the purpose of an IAM user?
an entity that you create in AWS to represent the person or application that uses it to interact with AWS
what is purpose of an IAM group?
to administrate the permissions associated with multiple users in batches
what are IAM roles?
define the limits for what can be done within your AWS account
what does it mean to provide federated access?
expanding the available tools for managing authentication beyond the simple IAM options you’ve already seen.
what is the purpose of a credential report?
contains important information about the state of your account security
what is the tool aws provides to secure data?
encryption keys
what are the other encryption tools to manage encryption?
AWS key management service (KMS)
customer master key (CMS)
