IAM allows you to manage users, groups and roles and their coressponding level of access to the AWS Platform.
Centrailized control of your AWS account, Integrates with exiting active directory account allowing single sign on, Fine-grained access control to AWS resources, The ability to create User/Group/Roles
Access to all AWS services except for management of groups and users within in IAM.
Administrator Access
You are a solutions architect working for a large engineering company who are moving their existing legacy hardware to AWS. You have configured their first AWS account and you have set up IAM. Your company will be primarily based out of West Germany, however they will have a small subsidiary operating out of South Korea and you will need an AWS environment configured there as well. Which of the following statements is true;
You will need to configure Users and Policy Documents only once, as these are applied globally
You have a client who is considering moving to AWS services and do not yet have an account. What is the first thing the company should do to set up an AWS Account?
Set up an account using their company email address.
You are a security administrator working for a hotel chain. You have a new member of staff who has started as a systems administrator and they will need full access to the AWS console. You have created the user account and generated the access key id and the secret access key. You have moved this user into the group where the other administrators are and you have provided the new user with their secret access key and their access key id. However when they go to log in to the AWS console, they cannot sign in. What could be the cause of this?
You cannot log in to the AWS console using the Access Key ID and Secret Access Key, instead you must generate a password for the user and supply the user with this password, as well as the unique link to sign in to the AWS console.
Implement multi-factor Authentication for all accounts.
No access to all AWS services.
JSON