Olete.in – MCQs, Mock Tests & Government Job Prep | AWS IAM AWS identity services, security and compliance

Identify the wrong statement.

1. Identity and access management (IAM) is a framework for business processes that facilitates the management of electronic or digital identities
2. With IAM technologies, IT managers can control user access to critical information within their organizations
3. Identity and access management products offer role-based access control
4. In IAM roles are defined according to the ability of an individual user to perform a specific task, such as view, create or modify a file

✅ Correct Answer: 4

Which of these is Identity in IAM?

1. Users
2. Groups
3. Roles
4. All of these

✅ Correct Answer: 4

When you first create an Amazon Web Services (AWS) account, you begin with a single sign-in identity that has complete access to all AWS services and resources in the account. This identity is called:

1. Root user
2. Main user
3. Super user
4. None of these

✅ Correct Answer: 1

An IAM user:

1. is an entity that you create in AWS
2. is to give people the ability to sign in to the AWS Management Console for interactive tasks and to make programmatic requests to AWS services using the API or CLI
3. both (a) and (b)
4. None of these

✅ Correct Answer: 3

Choose the below statements are true or false for AWS: 1. When you create an IAM user, you grant it permissions by making it a member of a group that has appropriate permission policies attached (recommended), or by directly attaching policies to the user 2. You can also clone the permissions of an existing IAM user, which automatically makes the new user a member of the same groups and attaches all the same policies.

1. 1. True, 2. True
2. 1. True, 2. False
3. 1. False, 2. True
4. 1. False, 2. False

✅ Correct Answer: 1

IAM group: (a) (b) (c) (d)

1. Is same as IAM users
2. Can be used to specify permissions for a collection of users
3. Is truly an identity
4. All of these

✅ Correct Answer: 2

Which of these is IAM principal?

1. A user
2. A role
3. An application
4. All of the above

✅ Correct Answer: 4

IAM role:

1. Have credentials (password or access keys) associated with it
2. Does not have any credentials (password or access keys) associated with it
3. May or may not have credentials (password or access keys) associated with it
4. None of these

✅ Correct Answer: 2

Temporary credentials:

1. It expires automatically after a specified time
2. Have a same set of permissions that your standard IAM user have
3. We can have control over the duration that the credentials are valid
4. A and C both

✅ Correct Answer: 4

AWS evaluates _______ when an IAM principal makes a request.

1. Username and Password
2. MAC Address
3. Security Policies
4. IP Address

✅ Correct Answer: 2

AWS supports ______ types of policies.

1. 4
2. 5
3. 6
4. 7

✅ Correct Answer: 3

Which of these is not an IAM policy type?

1. Smart policies
2. Access control lists (ACLs)
3. Session policies
4. Organizations SCPs

✅ Correct Answer: 1

Identify the wrong statement.

1. IAM can provide shared access to the AWS account
2. IAM is paid service in AWS
3. IAM can provide granular permissions
4. IAM supports multifactor authentication

✅ Correct Answer: 2

Names of IAM identities (users, roles, and groups):

1. Must be unique within the AWS account
2. Must be unique within the availability zone
3. Must be unique within the region
4. Must be unique within the AWS cloud whole

✅ Correct Answer: 1

How many maximum groups can be created in an AWS account?

1. 25
2. 50
3. 100
4. 200

✅ Correct Answer: 3

How many maximum users can be created in an AWS account?

1. 2000
2. 5000
3. 8000
4. 10000

✅ Correct Answer: 2

How many maximum roles can be created in an AWS account?

1. 300
2. 400
3. 200
4. 500

✅ Correct Answer: 4

An IAM user cannot be a member of more than __ groups.

1. 10
2. 20
3. 30
4. 40

✅ Correct Answer: 1

How many maximum access keys can be assigned to an IAM user?

1. 1
2. 2
3. 3
4. 4

✅ Correct Answer: 2

How many maximum customer-managed policies can be created in an AWS account?

1. 250
2. 500
3. 750
4. 1000

✅ Correct Answer: 4

How many maximum managed policies can be assigned to an IAM entity?

1. 2
2. 5
3. 10
4. 20

✅ Correct Answer: 3

How many maximum server certificates can be store in an AWS account?

1. 20
2. 50
3. 100
4. 500

✅ Correct Answer: 1

Which statement is wrong for Dark Web?

1. The dark web is a general term for the seedier corners of the web, where people can interact online without worrying about the watchful eye of the authorities
2. Usually, these sites are guarded by encryption mechanisms such as Tor that allow users to visit them anonymously
3. People use the dark web for a variety of purposes: buying and selling drugs, discussing hacking techniques and selling hacking services and so forth
4. None of these

✅ Correct Answer: 4

In addition to using IAM roles and policies or custom authorizers, you can use an ________ user pool to control who can access your API in Amazon API Gateway.

1. Amazon S3
2. Amazon Cognito
3. Amazon EBS
4. All of these

✅ Correct Answer: 2

_allows your HTTP backend to control and accept only requests originating from Amazon API Gateway, even if the backend is publicly accessible.

1. Amazon Cognito
2. Amazon S3
3. Client-Side SSL Certificates
4. Amazon EBS

✅ Correct Answer: 3

Identify the wrong statement for AWS.

1. When a storage device has reached the end of its useful life, AWS procedures include a decommissioning process
2. UPS units provide back-up power in the event of an electrical failure for critical and essential loads in the facility
3. Automatic fire detection and suppression equipment has been installed to reduce risk
4. AWS allows its user to visit physical data centers so that user can trust on it

✅ Correct Answer: 4