Amazon Cognito supports web identify federation trhough _.

Custom sign-in code or own user identities

A configuration check for rules that deny access to specific ports

AWS Developer Dominio 2: Seguridad

Authored by Juan Cano

Computers

University

Used 4+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

10 questions

Show all answers

MULTIPLE CHOICE QUESTION

1 min • 5 pts

Which tool helps you audit an IAM policy to identify allowing and denying access to a particular resource?

IAM Policy Simulator

IAM Profile Control

IAM Control Simulator

IAM Access Simulator

MULTIPLE CHOICE QUESTION

1 min • 5 pts

Wich element of an IAM Policy is optional, and allows to control when the included permissions are effective?

Statment ID (Sid)

Action

Condition

MULTIPLE CHOICE QUESTION

1 min • 5 pts

What is not possible way to athenticate a principal via IAM?

User name and password

Access Key

Access Key/Session Token

Service Account

MULTIPLE SELECT QUESTION

1 min • 5 pts

Security and compliance is a shared responsibility between AWS and the customer. Which of the following activities are the resposibility of the customer while using AWS Cloud services? (Choose all thar apply)

To able to stop unauthorized access to the physical data center

Make sure the servers have been kept up to date

Setting up networking firewall rules

Encryption of sensitive data at rest

Management of user credentials via IAM

MULTIPLE SELECT QUESTION

1 min • 5 pts

A company is using Amazon API Gateway for its REST APIs in an AWS account. The security team wants to allow only IAM users from another AWS account to access the APIs.
Which combination of actions should the security team take to satisfy these requirements? (Select TWO.)

Create an IAM permission policy and attach it to each IAM user. Set the APIs method authorization type to AWS_IAM. Use Signature Version 4 to sign the API requests.

Create an Amazon Cognito user pool and add each IAM user to the pool. Set the method authorization type for the APIs to COGNITO_USER_POOLS. Authenticate using the IAM credentials in Amazon Cognito and add the ID token to the request headers.

Create an Amazon Cognito identity pool and add each IAM user to the pool. Set the method authorization type for the APIs to COGNITO_USER_POOLS. Authenticate using the IAM credentials in Amazon Cognito and add the access token to the request headers

Create a resource policy for the APIs that allows access for each IAM user only.

Create an Amazon Cognito authorizer for the APIs that allows access for each IAM user only. Set the method authorization type for the APIs to COGNITO_USER_POOLS.

Answer explanation

A, D - A resource policy can be used to grant API access to one AWS account to users in a different AWS account using Signature Version 4 (SigV4) protocols.

MULTIPLE CHOICE QUESTION

1 min • 5 pts

A company is using a Redshift cluster to store their data warehouse. There is a requirement from the Internal IT Security team to encrypt data for the Redshift database. How can this be achieved?

Encrypt the EBS volumes of the underlying EC2 Instances.

Use AWS KMS Customer Default master key.

Use SSL/TLS for encrypting the data.

Use S3 Encryption.

MULTIPLE CHOICE QUESTION

1 min • 5 pts

A customer wants to create a stream of EBS Volumes in AWS. The data on the volume is required to be encrypted at rest. How can this be achieved?

Create an SSL Certificate and attach it to the EBS Volume.

Use KMS to generate encryption keys which can be used to encrypt the volume.

Use CloudFront in front of the EBS Volume to encrypt all requests.

Use EBS Snapshots to encrypt the requests.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

15 questions

Computer and Other Human Inventions

Quiz

•

University

15 questions

Robotics Prelim

Quiz

•

University

11 questions

SCM and Logistics

Quiz

•

University

10 questions

UTILITY PROGRAM

Quiz

•

University

10 questions

Data Warehouse - Foundations

Quiz

•

University

13 questions

Digital Technology Office 365 - 29May2020

Quiz

•

University - Professi...

7 questions

Data mining-Clustering-1

Quiz

•

University

15 questions

GIS Unit III

Quiz

•

University

Popular Resources on Wayground

7 questions

History of Valentine's Day

Interactive video

•

4th Grade

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

15 questions

Valentine's Day Trivia

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

Discover more resources for Computers

18 questions

Valentines Day Trivia

Quiz

•

3rd Grade - University

12 questions

IREAD Week 4 - Review

Quiz

•

3rd Grade - University

23 questions

Subject Verb Agreement

Quiz

•

9th Grade - University

5 questions

What is Presidents' Day?

Interactive video

•

10th Grade - University

7 questions

Renewable and Nonrenewable Resources

Interactive video

•

4th Grade - University

20 questions

Mardi Gras History

Quiz

•

6th Grade - University

10 questions

The Roaring 20's Crash Course US History

Interactive video

•

11th Grade - University

17 questions

Review9_TEACHER

Quiz

•

University

AWS Developer Dominio 2: Seguridad

Which tool helps you audit an IAM policy to identify allowing and denying access to a particular resource?

Wich element of an IAM Policy is optional, and allows to control when the included permissions are effective?

What is not possible way to athenticate a principal via IAM?

Security and compliance is a shared responsibility between AWS and the customer. Which of the following activities are the resposibility of the customer while using AWS Cloud services? (Choose all thar apply)

A company is using Amazon API Gateway for its REST APIs in an AWS account. The security team wants to allow only IAM users from another AWS account to access the APIs.
Which combination of actions should the security team take to satisfy these requirements? (Select TWO.)

A, D - A resource policy can be used to grant API access to one AWS account to users in a different AWS account using Signature Version 4 (SigV4) protocols.

A company is using a Redshift cluster to store their data warehouse. There is a requirement from the Internal IT Security team to encrypt data for the Redshift database. How can this be achieved?

A customer wants to create a stream of EBS Volumes in AWS. The data on the volume is required to be encrypted at rest. How can this be achieved?

The security policy of an organization requires an application to encrypt data before writing to the disk. Which solution should the organization use to meet this requirement?

Your IT Security department has mandated that all data on EBS volumes created for underlying EC2 Instances needs to be encrypted. Which of the following can help achieve this?

Amazon Cognito supports web identify federation trhough _.

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

AWS Developer Dominio 2: Seguridad

Which tool helps you audit an IAM policy to identify allowing and denying access to a particular resource?

Wich element of an IAM Policy is optional, and allows to control when the included permissions are effective?

What is not possible way to athenticate a principal via IAM?

Security and compliance is a shared responsibility between AWS and the customer. Which of the following activities are the resposibility of the customer while using AWS Cloud services? (Choose all thar apply)

A company is using Amazon API Gateway for its REST APIs in an AWS account. The security team wants to allow only IAM users from another AWS account to access the APIs.Which combination of actions should the security team take to satisfy these requirements? (Select TWO.)

A, D - A resource policy can be used to grant API access to one AWS account to users in a different AWS account using Signature Version 4 (SigV4) protocols.

A company is using a Redshift cluster to store their data warehouse. There is a requirement from the Internal IT Security team to encrypt data for the Redshift database. How can this be achieved?

A customer wants to create a stream of EBS Volumes in AWS. The data on the volume is required to be encrypted at rest. How can this be achieved?

The security policy of an organization requires an application to encrypt data before writing to the disk. Which solution should the organization use to meet this requirement?

Your IT Security department has mandated that all data on EBS volumes created for underlying EC2 Instances needs to be encrypted. Which of the following can help achieve this?

Amazon Cognito supports web identify federation trhough _.

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

A company is using Amazon API Gateway for its REST APIs in an AWS account. The security team wants to allow only IAM users from another AWS account to access the APIs.
Which combination of actions should the security team take to satisfy these requirements? (Select TWO.)