AWS - Identity and Access Management
You manage a team where multiple users need the same permissions to access DynamoDB. You also have one user who needs a unique permission set. What is the best approach to assign policies?
You manage a team where multiple users need the same permissions to access DynamoDB. You also have one user who needs a unique permission set. What is the best approach to assign policies?
hard📝 Best Practice Q15 of 15
Step-by-Step Solution
Solution:
Step 1: Identify best practice for shared permissions
Managed policies are reusable and ideal for common permissions shared by multiple users.Step 2: Handle unique permissions
Inline policies are best for unique, one-off permissions tied to a single user.Step 3: Combine approaches for efficiency and clarity
Use managed policy for the team and inline policy for the unique user to avoid duplication and ease management.Final Answer:
Create a managed policy for the common permissions and attach it to all users; create an inline policy for the unique user. -> Option DQuick Check:
Managed for shared, inline for unique [OK]
Quick Trick: Managed for many users, inline for one user [OK]
Common Mistakes:
MISTAKES- Using inline policies for all users causing duplication
- Using only managed policies losing unique control
- Attaching same inline policy to multiple users
Master "Identity and Access Management" in AWS
Want More Practice?
15+ quiz questions · All difficulty levels · Free
Free Signup - Practice All QuestionsMore AWS Quizzes