Bird
0
0

Given this IAM role trust policy snippet:

medium📝 Predict Output Q13 of 15
AWS - Identity and Access Management
Given this IAM role trust policy snippet:
{ "Statement": [{ "Effect": "Allow", "Principal": { "Service": "lambda.amazonaws.com" }, "Action": "sts:AssumeRole" }] }

Which AWS service can assume this role?
AAWS Lambda functions
BAmazon EC2 instances
CAmazon S3 buckets
DAWS IAM users
Step-by-Step Solution
Solution:

  1. Step 1: Read the Principal service

    The Principal is "lambda.amazonaws.com", which means AWS Lambda service is trusted.

  2. Step 2: Match service to options

    AWS Lambda functions matches AWS Lambda functions. EC2, S3, and IAM users are different entities and not trusted here.

  3. Final Answer:

    AWS Lambda functions -> Option A

  4. Quick Check:

    Principal service = lambda.amazonaws.com means Lambda [OK]
Quick Trick: Principal service name shows who can assume role [OK]
Common Mistakes:
  • Confusing service names like ec2.amazonaws.com vs lambda.amazonaws.com
  • Thinking S3 buckets can assume roles
  • Assuming IAM users are trusted by default

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More AWS Quizzes
AWS CLI - Basic CLI commands (s3, ec2) - Quiz 10hard AWS CLI - Using profiles for multiple accounts - Quiz 4medium EC2 Fundamentals - Instance metadata and user data - Quiz 9hard EC2 Fundamentals - Instance metadata and user data - Quiz 12easy Identity and Access Management - Managed vs inline policies - Quiz 5medium Identity and Access Management - Multi-factor authentication setup - Quiz 8hard S3 Fundamentals - Static website hosting on S3 - Quiz 5medium S3 Fundamentals - Creating S3 buckets - Quiz 2easy S3 Fundamentals - Static website hosting on S3 - Quiz 3easy VPC Fundamentals - VPC peering concept - Quiz 1easy