Amazon Cognito supports web identify federation trhough _.

Custom sign-in code or own user identities

A configuration check for rules that deny access to specific ports

AWS Developer Dominio 2: Seguridad

Quiz

•

Computers

•

University

•

Practice Problem

•

Hard

Juan Cano

Used 4+ times

FREE Resource

10 questions

Show all answers

MULTIPLE CHOICE QUESTION

1 min • 5 pts

Which tool helps you audit an IAM policy to identify allowing and denying access to a particular resource?

IAM Policy Simulator

IAM Profile Control

IAM Control Simulator

IAM Access Simulator

MULTIPLE CHOICE QUESTION

1 min • 5 pts

Wich element of an IAM Policy is optional, and allows to control when the included permissions are effective?

Statment ID (Sid)

Action

Condition

MULTIPLE CHOICE QUESTION

1 min • 5 pts

What is not possible way to athenticate a principal via IAM?

User name and password

Access Key

Access Key/Session Token

Service Account

MULTIPLE SELECT QUESTION

1 min • 5 pts

Security and compliance is a shared responsibility between AWS and the customer. Which of the following activities are the resposibility of the customer while using AWS Cloud services? (Choose all thar apply)

To able to stop unauthorized access to the physical data center

Make sure the servers have been kept up to date

Setting up networking firewall rules

Encryption of sensitive data at rest

Management of user credentials via IAM

MULTIPLE SELECT QUESTION

1 min • 5 pts

A company is using Amazon API Gateway for its REST APIs in an AWS account. The security team wants to allow only IAM users from another AWS account to access the APIs.
Which combination of actions should the security team take to satisfy these requirements? (Select TWO.)

Create an IAM permission policy and attach it to each IAM user. Set the APIs method authorization type to AWS_IAM. Use Signature Version 4 to sign the API requests.

Create an Amazon Cognito user pool and add each IAM user to the pool. Set the method authorization type for the APIs to COGNITO_USER_POOLS. Authenticate using the IAM credentials in Amazon Cognito and add the ID token to the request headers.

Create an Amazon Cognito identity pool and add each IAM user to the pool. Set the method authorization type for the APIs to COGNITO_USER_POOLS. Authenticate using the IAM credentials in Amazon Cognito and add the access token to the request headers

Create a resource policy for the APIs that allows access for each IAM user only.

Create an Amazon Cognito authorizer for the APIs that allows access for each IAM user only. Set the method authorization type for the APIs to COGNITO_USER_POOLS.

Answer explanation

A, D - A resource policy can be used to grant API access to one AWS account to users in a different AWS account using Signature Version 4 (SigV4) protocols.

MULTIPLE CHOICE QUESTION

1 min • 5 pts

A company is using a Redshift cluster to store their data warehouse. There is a requirement from the Internal IT Security team to encrypt data for the Redshift database. How can this be achieved?

Encrypt the EBS volumes of the underlying EC2 Instances.

Use AWS KMS Customer Default master key.

Use SSL/TLS for encrypting the data.

Use S3 Encryption.

MULTIPLE CHOICE QUESTION

1 min • 5 pts

A customer wants to create a stream of EBS Volumes in AWS. The data on the volume is required to be encrypted at rest. How can this be achieved?

Create an SSL Certificate and attach it to the EBS Volume.

Use KMS to generate encryption keys which can be used to encrypt the volume.

Use CloudFront in front of the EBS Volume to encrypt all requests.

Use EBS Snapshots to encrypt the requests.

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

15 questions

Kuis Artificial Intelligence

Quiz

•

University

10 questions

Tree and Planar Graph

Quiz

•

University

10 questions

CodeMonkey for B.Ed IT

Quiz

•

University

10 questions

Android

Quiz

•

University

10 questions

TOOLS FOR AD & TECHNOLOGY DEVELOPMENT (W4-W6)

Quiz

•

University

10 questions

Understanding Email, Contacts and Calendaring

Quiz

•

University

15 questions

ICT 0513 - Chapter 4 : System Unit

Quiz

•

University

12 questions

Python Quiz 1.4

Quiz

•

University

Popular Resources on Wayground

5 questions

This is not a...winter edition (Drawing game)

Quiz

•

1st - 5th Grade

15 questions

4:3 Model Multiplication of Decimals by Whole Numbers

Quiz

•

5th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

10 questions

The Best Christmas Pageant Ever Chapters 1 & 2

Quiz

•

4th Grade

12 questions

Unit 4 Review Day

Quiz

•

3rd Grade

10 questions

Identify Iconic Christmas Movie Scenes

Interactive video

•

6th - 10th Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

Discover more resources for Computers

26 questions

Christmas Movie Trivia

Lesson

•

8th Grade - Professio...

7 questions

Different Types of Energy

Interactive video

•

4th Grade - University

20 questions

Slopes and Slope-Intercept Form

Quiz

•

8th Grade - University

7 questions

Force and Motion

Interactive video

•

4th Grade - University

7 questions

Biomolecules (Updated)

Interactive video

•

11th Grade - University

20 questions

Winter/Holiday Trivia

Quiz

•

KG - University

10 questions

WINTER WIN Time - ELA - 12/9/2025

Quiz

•

KG - University

7 questions

Human Impact on Resources

Interactive video

•

4th Grade - University

AWS Developer Dominio 2: Seguridad

10 questions

Which tool helps you audit an IAM policy to identify allowing and denying access to a particular resource?

Wich element of an IAM Policy is optional, and allows to control when the included permissions are effective?

What is not possible way to athenticate a principal via IAM?

Security and compliance is a shared responsibility between AWS and the customer. Which of the following activities are the resposibility of the customer while using AWS Cloud services? (Choose all thar apply)

A company is using Amazon API Gateway for its REST APIs in an AWS account. The security team wants to allow only IAM users from another AWS account to access the APIs.
Which combination of actions should the security team take to satisfy these requirements? (Select TWO.)

A, D - A resource policy can be used to grant API access to one AWS account to users in a different AWS account using Signature Version 4 (SigV4) protocols.

A company is using a Redshift cluster to store their data warehouse. There is a requirement from the Internal IT Security team to encrypt data for the Redshift database. How can this be achieved?

A customer wants to create a stream of EBS Volumes in AWS. The data on the volume is required to be encrypted at rest. How can this be achieved?

The security policy of an organization requires an application to encrypt data before writing to the disk. Which solution should the organization use to meet this requirement?

Your IT Security department has mandated that all data on EBS volumes created for underlying EC2 Instances needs to be encrypted. Which of the following can help achieve this?

Amazon Cognito supports web identify federation trhough _.

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

AWS Developer Dominio 2: Seguridad

10 questions

Which tool helps you audit an IAM policy to identify allowing and denying access to a particular resource?

Wich element of an IAM Policy is optional, and allows to control when the included permissions are effective?

What is not possible way to athenticate a principal via IAM?

Security and compliance is a shared responsibility between AWS and the customer. Which of the following activities are the resposibility of the customer while using AWS Cloud services? (Choose all thar apply)

A company is using Amazon API Gateway for its REST APIs in an AWS account. The security team wants to allow only IAM users from another AWS account to access the APIs.Which combination of actions should the security team take to satisfy these requirements? (Select TWO.)

A, D - A resource policy can be used to grant API access to one AWS account to users in a different AWS account using Signature Version 4 (SigV4) protocols.

A company is using a Redshift cluster to store their data warehouse. There is a requirement from the Internal IT Security team to encrypt data for the Redshift database. How can this be achieved?

A customer wants to create a stream of EBS Volumes in AWS. The data on the volume is required to be encrypted at rest. How can this be achieved?

The security policy of an organization requires an application to encrypt data before writing to the disk. Which solution should the organization use to meet this requirement?

Your IT Security department has mandated that all data on EBS volumes created for underlying EC2 Instances needs to be encrypted. Which of the following can help achieve this?

Amazon Cognito supports web identify federation trhough _.

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

A company is using Amazon API Gateway for its REST APIs in an AWS account. The security team wants to allow only IAM users from another AWS account to access the APIs.
Which combination of actions should the security team take to satisfy these requirements? (Select TWO.)