Bird
0
0

What is the user's effective permission to deploy Lambda functions?

hard📝 Best Practice Q9 of 15
AWS - Identity and Access Management
You have two IAM groups: Developers with permission to deploy Lambda functions, and Auditors with read-only access. A user belongs to both groups. What is the user's effective permission to deploy Lambda functions?
AThe user must switch groups to deploy
BThe user cannot deploy Lambda functions
CThe user can deploy only if explicitly allowed in user policy
DThe user can deploy Lambda functions
Step-by-Step Solution
Solution:

  1. Step 1: Understand combined group permissions

    Permissions from all groups a user belongs to are combined.

  2. Step 2: Apply to Lambda deploy permission

    Developer group grants deploy permission, so user inherits it despite Auditor group.

  3. Final Answer:

    The user can deploy Lambda functions -> Option D

  4. Quick Check:

    Multiple group permissions combine = allowed if any allow [OK]
Quick Trick: User permissions combine from all groups [OK]
Common Mistakes:
  • Assuming conflicting groups block permissions
  • Thinking user must switch groups
  • Believing user policy is always required

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More AWS Quizzes
Cloud Computing Fundamentals - Cloud deployment models (public, private, hybrid) - Quiz 10hard Cloud Computing Fundamentals - AWS Management Console walkthrough - Quiz 10hard EC2 Fundamentals - Connecting to EC2 instances - Quiz 8hard EC2 Fundamentals - Key pairs for SSH access - Quiz 10hard EC2 Fundamentals - Connecting to EC2 instances - Quiz 10hard Identity and Access Management - Policy evaluation logic - Quiz 13medium Identity and Access Management - Policy evaluation logic - Quiz 9hard S3 Fundamentals - S3 versioning - Quiz 12easy Security Groups and Network ACLs - Security group as virtual firewall - Quiz 4medium VPC Fundamentals - Internet Gateway for public access - Quiz 7medium