SEARCH
🇬🇧
MEM
O
RY
.COM
4.37.48
Guest
Log In
Homepage
0
0
0
0
0
Create Course
Courses
Last Played
Dashboard
Notifications
Classrooms
Folders
Exams
Custom Exams
Help
Leaderboard
Shop
Awards
Forum
Friends
Subjects
Dark mode
User ID: 999999
Version: 4.37.48
www.memory.com
You are in browse mode. You must login to use
MEM
O
RY
Log in to start
Index
»
AWS Solution Architect - Associate
»
IAM & Security
»
Identiy and Access Management
level: Identiy and Access Management
Questions and Answers List
level questions: Identiy and Access Management
Question
Answer
You only need to allow your on-premises users to log in to AWS applications and services with their Active Directory credentials. What would you use?
AD Connector
You need a low-scale, low-cost directory with basic Active Directory compatibility that supports Samba 4–compatible applications. What would you use?
Simple AD
You develop high-scale SaaS applications and need a scalable directory to manage and authenticate your subscribers and that works with social media identities. What service do you need?
Amazon Cognito
When you assume a role, you give up your original permissions and take the permissions assigned to the role. True or False?
True
With resource based policy, the principal does not need to give up permissions. True or False?
True
If there is an explicit deny, the decision will be deny even if there's another allow policy. True or False?
True
IAM roles and resource-based policies delegate access across accounts only within a single partition. True or False?
True
A policy is composed of Service, Actions (Allow/Deny), Resources and Conditions. True or False?
True
The principal_block element is required in resource-based policies (for example, in Amazon S3 bucket policies) and in trust policies for IAM roles. It must not be included in identity-based policies. True or False?
True
The Principal element in a role trust policy refers to an IAM user. Later you delete and recreate the user. Now, the trust relationship is broken (since the Principal ID is changed). True or False?
True
What can you specify as Principal in a resource based policy?
Account, User, Role, or Federated user
An implicit deny in a permissions boundary does not limit the permissions granted by a resource-based policy. True or False?
True
An explicit deny in a permissions boundary DOES LIMIT the permissions granted by a resource-based policy. True or False?
True
In IAM policies, implicit deny happens when there is no explicit allow. True or False?
True
