placeholder image to represent content

4.) IAM and Security on AWS

Quiz by Moritz

Our brand new solo games combine with your quiz, on the same screen

Correct quiz answers unlock more play!

New Quizalize solo game modes
5 questions
Show answers
  • Q1
    You want to deploy a PCI-complaint application on AWS. You will be deploying your application on EC2 servers and will be using RDS to host your database. You have read that AWS services, which you are going to use, are PCI complaint. What steps do you need to take to make the application PCI complaint?
    Nothing. Since AWS is PCI complaint, you don’t have to do anything.
    Encrypt the database and the EBS volume from the EC2 server
    Encrypt the database, which will make sure the application is PCI complaint.
    You need to follow all the steps as per the PCI requirements, from the application and to the database, to make the application complaint.
    30s
  • Q2
    Your organization is in the process of migrating to AWS. Your company has more 10,000 employees, and it uses Microsoft Active Directory to authenticate. Creating an additional 10,000 users in AWS is going to be a painful activity for you. But all the users need to use the AWS services. What is the best way of providing them with the access?
    Since all the employees have an account with Facebook, they can use Facebook to authenticate with AWS.
    Write a script that can provision 10,000 users quickly.
    Integrate AWS with Microsoft Active Directory.
    Tell each employee to create a separate account by using their own credit card; this way you don’t have to create 10,000 users.
    30s
  • Q3
    When editing permissions (policies and ACLs), creating S3 buckets, and doing activities with EC2 instances, who is the owner in the context of AWS?
    The owner is the IAM role used to create the object via the GUI, CLI, or API.
    The owner is the IAM user who created the object via the GUI, CLI, or API.
    There is no special concept of owner in AWS.
    The owner refers to the root account.
    30s
  • Q4
    The application you are going to deploy on the EC2 servers is going to call APIs. How do you securely pass the credentials to your application?
    Keep the API credentials in S3.
    Keep the API credentials in DynamoDB.
    Embed the API credentials in your application JAR files.
    Use IAM roles for the EC2 instance.
    30s
  • Q5
    You are running an application on Amazon EC2 instances, and that application needs access to other AWS resources. You don’t want to store any long-term credentials on the instance. What service should you use to provide the short-term security credentials to interact with AWS resources?
    Use AWS Config.
    AWS CloudTrail.
    Use an IAM policy.
    Use AWS Security Token Service (STS).
    30s

Teachers give this quiz to your class