beginner

What is an IAM policy in AWS?

An IAM policy is a set of rules that define what actions are allowed or denied on AWS resources for users or roles.

Click to reveal answer

beginner

Which AWS service does the IAM policy control in this topic?

The IAM policy controls access to DynamoDB, which is a NoSQL database service.

Click to reveal answer

beginner

What is the purpose of the "Action" field in an IAM policy for DynamoDB?

The "Action" field specifies which DynamoDB operations (like reading or writing data) are allowed or denied.

Click to reveal answer

intermediate

Why is it important to specify the "Resource" in an IAM policy?

Specifying the "Resource" limits the policy to certain DynamoDB tables or indexes, improving security by not allowing access to everything.

Click to reveal answer

beginner

What does the "Effect" field in an IAM policy do?

The "Effect" field determines whether the policy allows or denies the specified actions on the resources.

Click to reveal answer

Which IAM policy "Effect" value allows access to DynamoDB actions?

AIgnore

BAllow

CDeny

DBlock

What does the "Resource" field in a DynamoDB IAM policy specify?

AThe AWS region

BThe password

CThe user name

DThe DynamoDB table or index to access

Which of these is a valid DynamoDB action in an IAM policy?

As3:PutObject

Bec2:StartInstances

Cdynamodb:PutItem

Dlambda:InvokeFunction

If you want to deny all access to DynamoDB, what should the "Effect" be?

ADeny

BAllow

CBlock

DReject

Why should IAM policies be as specific as possible?

ATo improve security by limiting access

BTo make policies easier to read

CTo allow all users full access

DTo speed up AWS services

Explain the key components of an IAM policy for DynamoDB and their roles.

Describe why it is important to limit IAM policy permissions when working with DynamoDB.