DynamoDB - Security and Access Control
A user cannot write to a DynamoDB table despite having an IAM policy with "dynamodb:PutItem" allowed. What could be wrong?
A user cannot write to a DynamoDB table despite having an IAM policy with "dynamodb:PutItem" allowed. What could be wrong?
medium📝 Debug Q7 of 15
Step-by-Step Solution
Solution:
Step 1: Verify resource ARN in IAM policy
If the ARN does not match the table, permission is not granted.Step 2: Exclude other options
Reading instead of writing or deny effect would cause errors, but question states policy allows PutItem. Table emptiness does not affect writes.Final Answer:
The policy's resource ARN does not match the table name -> Option CQuick Check:
Resource ARN mismatch blocks permission = D [OK]
Quick Trick: Resource ARN must match table for permission to apply [OK]
Common Mistakes:
MISTAKES- Ignoring resource ARN in policy
- Confusing read and write actions
- Thinking table emptiness blocks writes
Master "Security and Access Control" in DynamoDB
Want More Practice?
15+ quiz questions · All difficulty levels · Free
Free Signup - Practice All QuestionsMore DynamoDB Quizzes