0
0
Terraformcloud~5 mins

Least privilege for Terraform service accounts - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Recall & Review
beginner
What does 'least privilege' mean for Terraform service accounts?
It means giving the service account only the permissions it needs to do its job, and nothing more. This reduces security risks.
Click to reveal answer
beginner
Why should Terraform service accounts avoid using overly broad permissions?
Because broad permissions can allow accidental or malicious changes beyond what Terraform needs, increasing risk of damage.
Click to reveal answer
intermediate
How can you implement least privilege for a Terraform service account in cloud providers?
By assigning only specific roles or permissions that match the Terraform tasks, such as managing compute instances or storage buckets, and nothing extra.
Click to reveal answer
intermediate
What is a best practice for managing Terraform service account credentials?
Store credentials securely using secret managers or environment variables, and rotate them regularly to reduce risk.
Click to reveal answer
beginner
How does least privilege improve Terraform infrastructure management?
It limits the chance of accidental or harmful changes, making infrastructure safer and easier to audit.
Click to reveal answer
What is the main goal of least privilege for Terraform service accounts?
AAssign only necessary permissions for Terraform tasks
BGive full admin access to speed up deployment
CAllow all permissions to avoid errors
DUse personal user accounts instead
Which of these is a good practice for Terraform service account permissions?
AShare credentials with multiple users
BUse broad roles like Owner or Admin
CAssign roles based on specific resource needs
DAvoid using service accounts
How should Terraform service account credentials be stored?
AIn plain text files on developer machines
BShared via email
CHardcoded in Terraform code
DIn secure secret managers or environment variables
What risk does giving excessive permissions to Terraform service accounts create?
AReduced auditability
BIncreased security
CFaster deployments
DNo risk at all
Which principle helps keep Terraform infrastructure safe?
ARandom privilege
BLeast privilege
CNo privilege
DMaximum privilege
Explain how to apply least privilege to a Terraform service account in a cloud environment.
Think about limiting permissions and protecting credentials.
You got /4 concepts.
    Describe why least privilege is important for Terraform service accounts and what risks it helps prevent.
    Consider security and control benefits.
    You got /4 concepts.