4.) IAM and Security on AWS
Quiz by Moritz
Feel free to use or edit a copy
includes Teacher and Student dashboards
Measure skillsfrom any curriculum
Measure skills
from any curriculum
Tag the questions with any skills you have. Your dashboard will track each student's mastery of each skill.
With a free account, teachers can
- edit the questions
- save a copy for later
- start a class game
- automatically assign follow-up activities based on students’ scores
- assign as homework
- share a link with colleagues
- print as a bubble sheet
5 questions
Show answers
- Q1You want to deploy a PCI-complaint application on AWS. You will be deploying your application on EC2 servers and will be using RDS to host your database. You have read that AWS services, which you are going to use, are PCI complaint. What steps do you need to take to make the application PCI complaint?Nothing. Since AWS is PCI complaint, you don’t have to do anything.Encrypt the database and the EBS volume from the EC2 serverEncrypt the database, which will make sure the application is PCI complaint.You need to follow all the steps as per the PCI requirements, from the application and to the database, to make the application complaint.30s
- Q2Your organization is in the process of migrating to AWS. Your company has more 10,000 employees, and it uses Microsoft Active Directory to authenticate. Creating an additional 10,000 users in AWS is going to be a painful activity for you. But all the users need to use the AWS services. What is the best way of providing them with the access?Since all the employees have an account with Facebook, they can use Facebook to authenticate with AWS.Write a script that can provision 10,000 users quickly.Integrate AWS with Microsoft Active Directory.Tell each employee to create a separate account by using their own credit card; this way you don’t have to create 10,000 users.30s
- Q3When editing permissions (policies and ACLs), creating S3 buckets, and doing activities with EC2 instances, who is the owner in the context of AWS?The owner is the IAM role used to create the object via the GUI, CLI, or API.The owner is the IAM user who created the object via the GUI, CLI, or API.There is no special concept of owner in AWS.The owner refers to the root account.30s
- Q4The application you are going to deploy on the EC2 servers is going to call APIs. How do you securely pass the credentials to your application?Keep the API credentials in S3.Keep the API credentials in DynamoDB.Embed the API credentials in your application JAR files.Use IAM roles for the EC2 instance.30s
- Q5You are running an application on Amazon EC2 instances, and that application needs access to other AWS resources. You don’t want to store any long-term credentials on the instance. What service should you use to provide the short-term security credentials to interact with AWS resources?Use AWS Config.AWS CloudTrail.Use an IAM policy.Use AWS Security Token Service (STS).30s