0
0
AWScloud~5 mins

IAM users and groups in AWS - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Recall & Review
beginner
What is an IAM user in AWS?
An IAM user is an identity that represents a person or service who interacts with AWS. It has credentials to access AWS resources securely.
Click to reveal answer
beginner
What is the purpose of an IAM group?
An IAM group is a collection of IAM users. It helps manage permissions by assigning policies to the group instead of individual users.
Click to reveal answer
intermediate
How do IAM groups simplify permission management?
By assigning permissions to a group, all users in that group inherit those permissions. This avoids setting permissions one by one for each user.
Click to reveal answer
intermediate
Can IAM users belong to multiple groups?
Yes, an IAM user can be a member of multiple groups, inheriting permissions from all those groups combined.
Click to reveal answer
advanced
What is the difference between IAM user permissions and group permissions?
User permissions are policies attached directly to a user. Group permissions come from policies attached to groups the user belongs to. Both combine to define effective permissions.
Click to reveal answer
What does an IAM group in AWS primarily help with?
AManaging multiple users' permissions together
BCreating new AWS accounts
CStoring data securely
DRunning applications
Can an IAM user exist without belonging to any group?
AYes, users can exist alone with direct permissions
BOnly if the user is an admin
CNo, every user must be in a group
DOnly if the user is temporary
If a user belongs to two groups with different permissions, what happens?
AUser loses all permissions
BUser gets permissions from only one group
CUser gets combined permissions from both groups
DUser must choose which group to use
What is NOT a feature of IAM users?
AThey have credentials to access AWS
BThey can belong to groups
CThey can be assigned permissions directly
DThey automatically have admin rights
Why is it better to assign permissions to groups rather than individual users?
AGroups are faster to create
BGroups reduce repetitive permission assignments
CUsers cannot have permissions directly
DGroups automatically secure data
Explain how IAM users and groups work together to manage access in AWS.
Think about how a team shares access rights through group membership.
You got /4 concepts.
    Describe the benefits of using IAM groups instead of assigning permissions directly to each user.
    Imagine managing keys for a building by giving them to groups instead of individuals.
    You got /4 concepts.