Bird
0
0

You run aws sts assume-role but get an 'AccessDenied' error. What is the most likely cause?

medium📝 Debug Q14 of 15
AWS - Identity and Access Management
You run aws sts assume-role but get an 'AccessDenied' error. What is the most likely cause?
AThe AWS CLI is not installed on your machine.
BThe AWS account is suspended.
CThe role session name is missing from the command.
DThe IAM user or role does not have permission to assume the specified role.
Step-by-Step Solution
Solution:

  1. Step 1: Understand 'AccessDenied' meaning

    This error means the caller lacks permission to perform the action.

  2. Step 2: Identify permission requirements for assume-role

    The IAM user or role must have explicit permission to assume the target role.

  3. Final Answer:

    The IAM user or role does not have permission to assume the specified role. -> Option D

  4. Quick Check:

    AccessDenied = missing assume-role permission [OK]
Quick Trick: AccessDenied usually means missing assume-role permission [OK]
Common Mistakes:
  • Assuming CLI installation causes AccessDenied
  • Ignoring required role session name
  • Blaming account suspension without checking permissions

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More AWS Quizzes
AWS Account and Billing - Billing dashboard overview - Quiz 15hard Cloud Computing Fundamentals - AWS global infrastructure (regions, AZs) - Quiz 10hard Cloud Computing Fundamentals - Edge locations and CloudFront overview - Quiz 7medium Identity and Access Management - IAM policies (JSON structure) - Quiz 14medium Identity and Access Management - Least privilege principle - Quiz 4medium S3 Fundamentals - Uploading and downloading objects - Quiz 5medium Security Groups and Network ACLs - Default security group behavior - Quiz 14medium Security Groups and Network ACLs - Stateless behavior of NACLs - Quiz 1easy VPC Fundamentals - Creating a custom VPC - Quiz 7medium VPC Fundamentals - VPC peering concept - Quiz 10hard