0
0
AWScloud~5 mins

Assuming roles for temporary access in AWS - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Recall & Review
beginner
What is the main purpose of assuming a role in AWS?
Assuming a role allows a user or service to temporarily gain permissions defined by that role, enabling secure and controlled access without sharing long-term credentials.
Click to reveal answer
beginner
What AWS service is commonly used to assume roles for temporary credentials?
AWS Security Token Service (STS) is used to assume roles and provide temporary security credentials.
Click to reveal answer
intermediate
What is the maximum duration for temporary credentials when assuming a role using AWS STS?
The maximum duration is 12 hours by default, but it can be shorter or longer (up to 12 hours) depending on the role's session duration setting.
Click to reveal answer
intermediate
How does assuming a role improve security compared to using long-term IAM user credentials?
It reduces risk by limiting the time credentials are valid and avoids sharing permanent access keys, making it easier to manage and revoke access.
Click to reveal answer
beginner
What is a trust policy in the context of AWS roles?
A trust policy defines which entities (users, services, accounts) are allowed to assume the role.
Click to reveal answer
Which AWS service provides temporary credentials when assuming a role?
AAmazon S3
BAWS Identity and Access Management (IAM)
CAWS CloudTrail
DAWS Security Token Service (STS)
What is the maximum default session duration for an assumed role?
A12 hours
B1 hour
C24 hours
D7 days
What does a trust policy specify in an IAM role?
AWhich entities can assume the role
BWhich actions the role can perform
CThe password policy for users
DThe billing details for the account
Why is assuming roles preferred over sharing long-term IAM user credentials?
ABecause roles have unlimited access
BBecause roles do not require permissions
CBecause temporary credentials reduce security risks
DBecause IAM users cannot access AWS services
Which of the following is NOT a benefit of using temporary credentials from assuming roles?
ANo need to rotate long-term access keys
BPermanent access without expiration
CAutomatic expiration of credentials
DFine-grained access control
Explain how assuming roles works in AWS and why it is useful for temporary access.
Think about how you can get short-term permissions without sharing passwords.
You got /4 concepts.
    Describe the role of a trust policy in the process of assuming a role.
    It controls who is trusted to use the role.
    You got /3 concepts.