Bird
0
0

Identify the error in this IAM policy statement:

medium📝 Debug Q6 of 15
AWS - Identity and Access Management
Identify the error in this IAM policy statement:
{"Effect": "Allow", "Action": "s3:ListBucket", "Resource": "arn:aws:s3:::mybucket/*"}
AMissing 'Version' key at the policy root
B"Action" should be an array, not a string
CThe "Effect" value should be lowercase
DThe resource ARN is incorrect for ListBucket action
Step-by-Step Solution
Solution:

  1. Step 1: Check the resource ARN for ListBucket

    s3:ListBucket requires the bucket ARN "arn:aws:s3:::mybucket" WITHOUT /*. The /* is incorrect here as it specifies objects, not the bucket.

  2. Step 2: Rule out other options

    Missing 'Version' is ok for a statement snippet, "Action" string is valid, "Effect": "Allow" is correctly capitalized.

  3. Final Answer:

    Resource ARN incorrect for ListBucket (includes /*) -> Option D

  4. Quick Check:

    ListBucket Resource = arn:aws:s3:::bucket (no /*) [OK]
Quick Trick: s3:ListBucket requires bucket ARN without trailing /* [OK]
Common Mistakes:
  • Using /* for ListBucket resources
  • Assuming "Action" must be an array
  • Thinking 'Version' is required in statement snippet

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More AWS Quizzes
AWS Account and Billing - Setting up billing alerts - Quiz 1easy AWS Account and Billing - Free tier usage monitoring - Quiz 4medium AWS CLI - Installing AWS CLI - Quiz 12easy Cloud Computing Fundamentals - AWS Management Console walkthrough - Quiz 8hard EC2 Fundamentals - Why EC2 matters for compute - Quiz 6medium Identity and Access Management - Assuming roles for temporary access - Quiz 14medium S3 Fundamentals - S3 versioning - Quiz 10hard Security Groups and Network ACLs - Security groups vs NACLs decision - Quiz 12easy Security Groups and Network ACLs - Stateless behavior of NACLs - Quiz 1easy VPC Fundamentals - Internet Gateway for public access - Quiz 4medium