[Solved] You want to create an IAM policy that permits a user to perform any DynamoDB action on all tables in your AWS account but only within the... Which Resource ARN pattern correctly enforces this? | DynamoDB

DynamoDB - Security and Access Control

You want to create an IAM policy that permits a user to perform any DynamoDB action on all tables in your AWS account but only within the 'eu-central-1' region. Which Resource ARN pattern correctly enforces this?

A"arn:aws:dynamodb:eu-central-1:123456789012:table/*"

B"arn:aws:dynamodb:*:123456789012:table/*"

C"arn:aws:dynamodb:eu-central-1:*:table/*"

D"arn:aws:dynamodb:eu-central-1:123456789012:table/MyTable"

Step-by-Step Solution

Solution:

Step 1: Understand ARN Components
ARN format: arn:partition:service:region:account-id:resource
Step 2: Region Restriction
To restrict to 'eu-central-1', the region field must be exactly 'eu-central-1'.
Step 3: Account and Resource
Account ID must be specified (123456789012), and resource uses wildcard '*' to include all tables.
Step 4: Evaluate Options
"arn:aws:dynamodb:eu-central-1:123456789012:table/*" matches all tables in 'eu-central-1' for the account; others either wildcard region or wrong account.
Final Answer:
"arn:aws:dynamodb:eu-central-1:123456789012:table/*" -> Option A
Quick Check:
Region and account must be exact, resource wildcard for all tables [OK]

Quick Trick: Specify exact region and account in ARN to restrict scope [OK]

Common Mistakes:

MISTAKES

Using '*' for region to restrict by region
Omitting account ID or using wildcard incorrectly
Specifying a single table instead of all tables

Master "Security and Access Control" in DynamoDB

9 interactive learning modes - each teaches the same concept differently

Learn Why Deep Visual Try Challenge Project Recall Time

More DynamoDB Quizzes

Which Resource ARN pattern correctly enforces this?

Step 1: Understand ARN Components

Step 2: Region Restriction

Step 3: Account and Resource

Step 4: Evaluate Options

Final Answer:

Quick Check:

Want More Practice?