0
0
AWScloud~20 mins

Managed vs inline policies in AWS - Practice Questions

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Challenge - 5 Problems
🎖️
Policy Mastery Badge
Get all challenges correct to earn this badge!
Test your skills under time pressure!
🧠 Conceptual
intermediate
2:00remaining
Difference between managed and inline policies
Which statement correctly describes the difference between AWS managed policies and inline policies?
AInline policies are AWS predefined policies; managed policies are custom policies created by users.
BInline policies can be reused across multiple users, groups, or roles; managed policies are embedded directly into a single user, group, or role.
CManaged policies cannot be modified once created; inline policies can be attached to multiple users, groups, or roles.
DManaged policies are standalone and can be attached to multiple users, groups, or roles; inline policies are embedded directly into a single user, group, or role.
Attempts:
2 left
💡 Hint
Think about how policies are attached and reused in AWS IAM.
Architecture
intermediate
2:00remaining
Policy management best practice
You want to apply the same permissions to multiple IAM users and update permissions easily in the future. Which policy type should you use?
AUse inline policies attached to a group containing the users.
BUse a single customer managed policy attached to all users.
CUse inline policies attached to each user separately.
DUse AWS managed policies only.
Attempts:
2 left
💡 Hint
Consider ease of updating permissions for many users at once.
security
advanced
2:00remaining
Policy deletion impact
What happens if you delete a customer managed policy that is attached to multiple IAM roles?
AAll roles lose the permissions granted by that policy immediately.
BRoles keep the permissions because the policy is cached locally.
CRoles lose permissions only after a 24-hour delay.
DAWS automatically replaces the deleted policy with a default managed policy.
Attempts:
2 left
💡 Hint
Think about how AWS enforces permissions from policies.
service_behavior
advanced
2:00remaining
Inline policy behavior on user deletion
If an IAM user with an inline policy is deleted, what happens to the inline policy?
AThe inline policy is deleted along with the user.
BThe inline policy remains in AWS and can be attached to another user.
CThe inline policy is converted automatically into a managed policy.
DThe inline policy is archived but not deleted.
Attempts:
2 left
💡 Hint
Consider the lifecycle of inline policies tied to a single identity.
Best Practice
expert
3:00remaining
Choosing policy type for audit and reuse
Your organization requires strict auditing of policy changes and wants to reuse policies across multiple accounts. Which policy type and approach best meets these requirements?
AUse AWS managed policies only, as AWS audits all changes automatically.
BUse inline policies in each account to keep policies isolated and auditable per user.
CUse customer managed policies stored in AWS Organizations and attach them across accounts.
DUse inline policies attached to groups to simplify reuse and auditing.
Attempts:
2 left
💡 Hint
Think about centralized management and audit capabilities across accounts.