beginner

What is an IAM policy in AWS?

An IAM policy is a JSON document that defines permissions for AWS resources. It tells who can do what on which resource.

Click to reveal answer

beginner

What are the main parts of an IAM policy JSON?

The main parts are: 1. Version - policy language version 2. Statement - list of permission rules 3. Effect - Allow or Deny 4. Action - what actions are allowed or denied 5. Resource - which AWS resources the policy applies to

Click to reveal answer

beginner

What does the 'Effect' field in an IAM policy specify?

The 'Effect' field specifies whether the policy allows or denies the actions. It can be either 'Allow' or 'Deny'.

Click to reveal answer

beginner

How do you specify multiple actions in an IAM policy?

You list multiple actions as an array of strings under the 'Action' field, for example: ["s3:GetObject", "s3:PutObject"].

Click to reveal answer

beginner

What is the purpose of the 'Resource' field in an IAM policy?

The 'Resource' field specifies which AWS resources the policy applies to, using ARNs (Amazon Resource Names).

Click to reveal answer

Which field in an IAM policy JSON defines whether to allow or deny permissions?

AEffect

BAction

CResource

DVersion

What type of document format is used for IAM policies?

AYAML

BJSON

CXML

DCSV

In an IAM policy, where do you list the AWS actions you want to allow or deny?

AEffect

BResource

CAction

DStatement

What does the 'Version' field in an IAM policy specify?

AThe AWS service version

BThe resource version

CThe user version

DThe policy language version

Which of the following is a valid 'Effect' value in an IAM policy?

AAllow

BAuthorize

CGrant

DPermit

Describe the structure of an AWS IAM policy JSON document.

Explain how you would allow a user to read objects from a specific S3 bucket using an IAM policy.