Bird
0
0

Given the following IAM group policy attached to group Admins:

medium📝 Predict Output Q13 of 15
AWS - Identity and Access Management
Given the following IAM group policy attached to group Admins: 
{
  "Version": "2012-10-17",
  "Statement": [{
    "Effect": "Allow",
    "Action": "s3:*",
    "Resource": "*"
  }]
}
If user bob is added to the Admins group, what permissions does bob have on S3?
AFull access to all S3 actions and resources
BRead-only access to S3 buckets
CNo access to S3 unless user policy allows it
DAccess only to S3 buckets created by bob
Step-by-Step Solution
Solution:

  1. Step 1: Analyze the group policy permissions

    The policy allows all S3 actions (s3:*) on all resources (*), meaning full access.

  2. Step 2: Understand group membership effect

    User bob inherits all permissions from the Admins group.

  3. Final Answer:

    Full access to all S3 actions and resources -> Option A

  4. Quick Check:

    Group policy allows s3:* on * = full access [OK]
Quick Trick: s3:* on * means full S3 access [OK]
Common Mistakes:
  • Assuming user needs separate policy for access
  • Thinking group policies restrict to created buckets
  • Confusing read-only with full access

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More AWS Quizzes
Cloud Computing Fundamentals - Cloud deployment models (public, private, hybrid) - Quiz 10hard Cloud Computing Fundamentals - AWS Management Console walkthrough - Quiz 10hard EC2 Fundamentals - Connecting to EC2 instances - Quiz 8hard EC2 Fundamentals - Key pairs for SSH access - Quiz 10hard EC2 Fundamentals - Connecting to EC2 instances - Quiz 10hard Identity and Access Management - Policy evaluation logic - Quiz 13medium Identity and Access Management - Policy evaluation logic - Quiz 9hard S3 Fundamentals - S3 versioning - Quiz 12easy Security Groups and Network ACLs - Security group as virtual firewall - Quiz 4medium VPC Fundamentals - Internet Gateway for public access - Quiz 7medium