Securing a new AWS Account Flashcards
What is the recommended practice regarding the AWS root account?
AWS recommends not using the root account for day-to-day interactions due to security reasons.
What is the AWS root account?
The AWS root account is the initial account created when setting up an AWS account, which has complete access to all AWS services.
What security measures should be taken with the AWS root account?
Enabling Multi-Factor Authentication (MFA) and securing the root account’s access keys are recommended security measures.
What is the principle of least privilege in IAM?
The principle of least privilege suggests granting users or entities only the permissions necessary to perform their tasks, reducing potential security risks.
How can the root account be secured using IAM?
The root account can be secured by creating an IAM user for day-to-day interactions, enabling a password policy, and implementing MFA.
What is the purpose of creating an IAM group?
Creating an IAM group helps organize users and apply policies to multiple users simultaneously, simplifying access management.
How can MFA be enabled for an AWS account?
MFA can be enabled for an AWS account, including the root account and administrator users, through the IAM console.
What does AWS CloudTrail do?
AWS CloudTrail is a service that logs API requests made within an AWS account, enabling operational auditing and providing insights for security investigations.
How long does AWS CloudTrail keep logs by default?
AWS CloudTrail keeps logs for the last 90 days by default, but users can extend the retention period as needed.
What is the AWS cost and usage report?
The AWS cost and usage report provides information about resource usage and estimated costs, delivering the reports to an Amazon S3 bucket specified by the user.
What are the benefits of enabling billing reports for an AWS account?
Enabling billing reports helps track resource usage, monitor costs, and maintain compliance by providing detailed usage and cost information.
What is the recommended practice for securing access to the AWS Management Console for administrators?
Administrators should use IAM users with MFA enabled and should avoid using the root account for day-to-day activities.
What should be done before starting to use a new administrator access account?
Before using a new administrator access account, disable and remove root account access keys if they exist and sign in using the new user credentials.
How can IAM policies be used to manage permissions effectively?
IAM policies can be used to define specific permissions for users, groups, or roles based on the principle of least privilege, ensuring users have only necessary access.
What are some fundamental security steps recommended by AWS for new accounts?
AWS recommends creating IAM users, enabling MFA, implementing password policies, and using IAM groups with defined policies for effective access management in new accounts.