0
0
AWScloud~5 mins

IAM best practices in AWS - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Recall & Review
beginner
What is the principle of least privilege in IAM?
It means giving users and roles only the permissions they need to do their job, and no more. This helps reduce security risks.
Click to reveal answer
beginner
Why should you avoid using root account for daily tasks?
The root account has full access to everything. Using it daily increases risk of accidental or malicious changes. Instead, create users with limited permissions.
Click to reveal answer
beginner
What is MFA and why is it important in IAM?
MFA stands for Multi-Factor Authentication. It adds an extra step to login, like a code from your phone, making accounts harder to hack.
Click to reveal answer
intermediate
How do IAM roles help improve security?
IAM roles let you assign permissions to services or users temporarily without sharing long-term credentials. This limits exposure and improves control.
Click to reveal answer
intermediate
Why is it important to regularly review IAM policies and permissions?
Regular reviews help find and fix overly broad permissions or unused accounts, keeping your environment secure and tidy.
Click to reveal answer
What should you do before granting permissions to a new IAM user?
AShare passwords with other users
BGive full admin access by default
CUse the root account credentials
DGrant only the permissions needed for their tasks
Which of the following is a best practice for securing the AWS root account?
AEnable MFA and avoid using it for daily tasks
BShare root credentials with team members
CUse root account for all API calls
DDisable MFA for easier access
What is the main benefit of using IAM roles instead of long-term user credentials?
ARoles allow unlimited access to all resources
BRoles require no permissions
CRoles provide temporary permissions without sharing passwords
DRoles are only for root users
How often should you review IAM policies and permissions?
ANever, once set they are permanent
BRegularly, to remove unnecessary permissions
COnly when a security breach happens
DOnce every 10 years
What does MFA add to the login process?
AAn extra verification step like a code from a device
BA longer password requirement
CAutomatic password reset
DAccess without a password
Explain the principle of least privilege and why it is important in IAM.
Think about giving only the keys someone needs, not all keys.
You got /3 concepts.
    Describe how enabling MFA improves the security of AWS accounts.
    Consider how a second lock on a door adds safety.
    You got /3 concepts.