Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS Solutions Architect > IAM 101 > Flashcards

IAM 101 Flashcards

1
Q

What is IAM (Identity Access Management)?

A

IAM allows you to manage users and their level of access to the AWS Console.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

List the features of IAM

A
  1. Centralized control of your AWS account
  2. Shared Access to your AWS Account
  3. Granular Permissions (access to this but not that)
  4. Identity Federation
  5. Multi Factor Authentication
  6. Temporary access for users/devices and services where necessary ( such as when using a mobile app, access only when using the app)
  7. Allows you to set up your own password rotation policy
  8. Integrates with many AWS Services
  9. Supports PCI DSS Compliance
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is Identity Federation?

A

Allows users to potentially log into the AWS Console using the same credentials as Active Directory, Facebook, LinkedIn etc.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is PCI DSS Compliance?

A

A framework you must be compliant with to be able to accept Credit Card information.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are IAM Users?

A

End users such as people/employees of an organization.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are IAM Groups?

A

A collection of users. Each user in the group will inherit the permissions of the group.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are IAM Policies?

A

Policies are made up of documents called Policy Documents. These documents are in JSON and they give permissions as to what a User/Group/Role is able to do.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are IAM Roles?

A

You create roles and then assign them to AWS Resources (users and/or services, grant a user or EC2 instance access to read/write to S3 bucket)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

True or False: IAM applies to specific Regions

A

False: IAM is universal, it does not apply to regions at this time.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the IAM Root Account?

A

The Root Account is the account created when you first setup your AWS account. It has complete Admin Access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

True or False: New IAM users have NO permissions when first created

A

True; they must be assigned access, including to the Console and/or Command Line.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is IAM Programmatic Access?

A

Programmatic Access allows a user to connect to AWS via API, and AWS CLI. This type of access requires an Access Key ID and Secret Access Key to login.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is IAM Console Access?

A

Console Access allows a user to connect to AWS via the AWS web page interface. This requires a password, not Access Keys.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

True or False: You can provide a user their Access Keys or Password if they forget them.

A

False: You can only view the Access Keys and Password once. This is during the initial creation of the user.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

How can I allow an EC2 instance to write to an S3 bucket?

A

The EC2 instance will need an IAM Role assigned to it with the S3 Admin Access permission.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

AWS Solutions Architect (16 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions