What does IAM stand for?
Identity and Access Management
Can a group contain another group?
No
Do users have to belong to a group?
No, but it’s not best practice
Can users belong to multiple groups?
Yes
What kind of service is IAM (global or regional)?
Global
What are the MFA options on AWS?
- Virtual MFA device (google authenticator/authy)
- Universal Second Factory U2F (Yubikey)
- Hardware Key Fob
What is an IAM role?
An IAM entity that defines a set of permissions for making requests to AWS services, and will be used by an AWS service
True or False: IAM User groups can contain IAM users and other user groups
False. IAM User Groups can only contains IAM Users
What are the fields in the IAM Policy Structure
Version: (YYYY-MM-DD)
Id: Optional
Statement:
Principal: account/user/role to which
policy is applied
Effect: Allow/Deny access
Action: List of allow/deny actions
Resource: Resource the action is applied to
Sid: statement Id - Optional
How can you audit IAM usage?
By creating a IAM credentials report and using the IAM access advisor service.
-
Section 1: Course Introduction1
-
Section 3: Getting Started with AWS4
-
Section 4: IAM & AWS CLI10
-
Section 5: EC2 Fundamentals16
-
Section 6: EC2 Instance Storage16
-
Section 7: AWS Fundamentals: ELB + ASG28
-
Section 8: AWS Fundamentals: RDS + Aurora + ElastiCache13
-
Section 9: Route 530
-
Section 10: VPC Fundamentals0
-
Section 11: Amazon S3 Introduction0
-
Section 12: AWS CLI, SDK, IAM Roles & Policies0
