Bird
0
0

Given this IAM policy statement snippet:

medium📝 Predict Output Q13 of 15
AWS - Identity and Access Management
Given this IAM policy statement snippet:
{
  "Effect": "Allow",
  "Action": "s3:ListBucket",
  "Resource": "arn:aws:s3:::example-bucket"
}

What permission does this statement grant?
AAllows listing the bucket itself
BAllows listing objects inside the bucket
CAllows deleting the bucket
DAllows uploading objects to the bucket
Step-by-Step Solution
Solution:

  1. Step 1: Understand the Action "s3:ListBucket"

    This action allows listing the bucket itself and its metadata, not the objects inside.

  2. Step 2: Match Resource and Action

    The resource is the bucket ARN, so permission is to list the bucket (its properties), not the objects inside the bucket.

  3. Final Answer:

    Allows listing the bucket itself -> Option A

  4. Quick Check:

    s3:ListBucket = list bucket (not objects) [OK]
Quick Trick: s3:ListBucket lists the bucket, not objects inside [OK]
Common Mistakes:
  • Confusing ListBucket with listing objects inside the bucket
  • Assuming permission to delete or upload
  • Ignoring the resource ARN level

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More AWS Quizzes
AWS Account and Billing - Setting up billing alerts - Quiz 1easy AWS Account and Billing - Free tier usage monitoring - Quiz 4medium AWS CLI - Installing AWS CLI - Quiz 12easy Cloud Computing Fundamentals - AWS Management Console walkthrough - Quiz 8hard EC2 Fundamentals - Why EC2 matters for compute - Quiz 6medium Identity and Access Management - Assuming roles for temporary access - Quiz 14medium S3 Fundamentals - S3 versioning - Quiz 10hard Security Groups and Network ACLs - Security groups vs NACLs decision - Quiz 12easy Security Groups and Network ACLs - Stateless behavior of NACLs - Quiz 1easy VPC Fundamentals - Internet Gateway for public access - Quiz 4medium