Bird
0
0

Which JSON element in an IAM policy defines what actions are allowed or denied?

easy📝 Conceptual Q1 of 15
AWS - Identity and Access Management
Which JSON element in an IAM policy defines what actions are allowed or denied?
A"Effect"
B"Resource"
C"Action"
D"Condition"
Step-by-Step Solution
Solution:

  1. Step 1: Understand the role of "Effect" in IAM policies

    The "Effect" key specifies whether the actions are allowed or denied in the policy statement.

  2. Step 2: Differentiate from other keys

    "Action" defines what actions, "Resource" defines where, and "Condition" adds extra rules, but only "Effect" controls allow or deny.

  3. Final Answer:

    "Effect" defines allow or deny -> Option A

  4. Quick Check:

    Effect = Allow or Deny [OK]
Quick Trick: "Effect" always controls allow or deny in IAM policies [OK]
Common Mistakes:
  • Confusing "Action" with "Effect"
  • Thinking "Resource" controls allow or deny
  • Ignoring the "Effect" key

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More AWS Quizzes
AWS Account and Billing - Setting up billing alerts - Quiz 1easy AWS Account and Billing - Free tier usage monitoring - Quiz 4medium AWS CLI - Installing AWS CLI - Quiz 12easy Cloud Computing Fundamentals - AWS Management Console walkthrough - Quiz 8hard EC2 Fundamentals - Why EC2 matters for compute - Quiz 6medium Identity and Access Management - Assuming roles for temporary access - Quiz 14medium S3 Fundamentals - S3 versioning - Quiz 10hard Security Groups and Network ACLs - Security groups vs NACLs decision - Quiz 12easy Security Groups and Network ACLs - Stateless behavior of NACLs - Quiz 1easy VPC Fundamentals - Internet Gateway for public access - Quiz 4medium