IAM and AWS CLI

What is a proper definition of an IAM role?

An IAM entity that defines a set of permissions for making request to AWS services, and will be used by an AWS service.

Which IAM security tool list all the AWS accounts information?

IAM credential report list all our AWS account’s IAM users and the status of their various credentials.

What are IAM Policies?

IAM policies are Json documents That define a set of permissions for making request to AWS services, and can be used by IAM users, user groups and IAM roles.

Which principal should you apply regarding IAM permissions?

Grant least privilege

How can we increase our route account security?

Enable multi factor authentication(MFA)

When we enable MFA, this adds another layer of security. Even if our password is stolen, lost, or hacked, our account is not compromised.

IAM policy consist of one or more statements. A statement in an IAM policy does not consist of following

A statement in an IAM policy consist of SID, Effect , Principal, Resource ,Action, and Condition.

Version is a part of IAM policy itself, it is not a part of statement.

According to AWS shared responsibility model, which of the following is AWS responsibility?

AWS infrastructure.

Comments

Post a Comment

Popular posts from this blog

VPC,Cloud Front,EC2,RDS in AWS

 VPC allows you to provision a logically isolated section of AWS where we can launch AWS resources in a virtual network. Cloud Front is a Fast Highly Secure and Programmable Content Delivery Network EC2 provides compute resources  RDS is Amazon's Relationship Database System.
Read more

High Availability Architecture

Following points can be considered while creating a highly available architecture depending on scenarios  A spread Placement group Supports a maximum of seven running Instances per availability zone.for example, In A region with three Availability zones, you can run total of 21 instances in the group.If you try to start an eighth Instance in the same availability zone and in the same spread placement group, the Instance will not launch.If you need to have more than seven instances in an availability zone,Then the Recommendation is to use multiple spread Placement Groups. Using multiple spread Placement Groups does not provide guarantee about the spread of instance between groups, but it does ensure the spread for each group, thus limiting impact from certain classes of failures. Durability refers to the ongoing existence of the object or resource. Note that it does not mean you can access it, only that it continues to exist. Groups, Scaling options, configuration templates are comp...
Read more