Security - Credential and Access Management

Question 1

What is IAM?

Answer 1

authorization and authentication of AWS resources

Question 2

What is a resource-bases policy?

Answer 2

permission policies attached to a resource such as a S3 bucket, inline only; trust polices are attached to a role and define which principals can assume that role

Question 3

What is a identity-based policy?

Answer 3

permission policies attached to a principal or identity, inline; managed or inline

Question 4

What is a principal?

Answer 4

any entity that can use an AWS resource; user, roles, federated users and applications

Question 5

What is a request?

Answer 5

use of the AWS management console by a principal is a request

Question 6

What is a IAM role?

Answer 6

a role does not have credentials like a user; service that performs actions in your account on your behalf

Question 7

What is AWS Security Token Service?

Answer 7

provide trusted users with temporary security credentials for access to AWS resources

Question 8

What is AWS secrets manager?

Answer 8

Store passwords, encryption keys, API keys, SSH keys, and alternative way of storing passwords; can access secret keys via API provided by IAM