Quizz 1 Gameday AWS Security Advanced
Authored by Allan Duee
Other
University
Used 2+ times
AI Actions
Add similar questions
Adjust reading levels
Convert to real-world scenario
Translate activity
More...
Content View
Student View
10 questions
Show all answers
1.
MULTIPLE CHOICE QUESTION
1 min • 1 pt
Which of the following statements about policy documents are true?
The Effect field of your policy document has 3 possible actions: Allow, Deny, and Explicit Deny
An explicit deny overrides an allow
You can attach identity-based policies to the root user
AWS recommends assigning policies to individual users
2.
MULTIPLE CHOICE QUESTION
1 min • 1 pt
A security engineer is configuring a new website that is named example.com. The security engineer wants to secure communications with the website by requiring users to connect to example.com through HTTPS.
Which of the following is a valid option for storing SSL/TLS certificates?
Custom SSL certificate that is stored in AWS Key Management Service (AWS KMS)
Default SSL certificate that is stored in Amazon CloudFront
Custom SSL certificate that is stored in AWS Certificate Manager (ACM)
Default SSL certificate that is stored in Amazon S3
3.
MULTIPLE CHOICE QUESTION
1 min • 1 pt
Which of the following statements describes the principle of least privilege?
Only assigning a user the minimum amount of permissions that they need to do their job
Giving a user full permission to most services
Giving a user too few permissions
Standardizing permissions across all users in your company
4.
MULTIPLE CHOICE QUESTION
1 min • 1 pt
A security engineer creates an Amazon S3 bucket policy that denies access to all users. A few days later, the security engineer adds an additional statement to the bucket policy to allow read-only access to one other employee. Even after updating the policy, the employee sill receives an access denied message.
What is the likely cause of this access denial?
The ACL in the bucket needs to be updated
The IAM policy does not allow the user to access the bucket
It takes a few minutes for a bucket policy to take effect
The allow permission is being overridden by the deny
5.
MULTIPLE SELECT QUESTION
1 min • 1 pt
What are the MOST secure ways to protect the AWS account root user of a recently opened AWS account? (Choose two.)
Use the AWS account root user access keys instead of the AWS Management Console
Enable multi-factor authentication for the AWS IAM users with the AdministratorAccess managed policy attached to them
Use AWS KMS to encrypt all AWS account root user and AWS IAM access keys and set automatic rotation to 30 days
Do not create access keys for the AWS account root user; instead, create AWS IAM users
Enable multi-factor authentication for the AWS account root user
6.
MULTIPLE CHOICE QUESTION
1 min • 1 pt
Which of the following statements about policy documents are true?
The Effect field of your policy document has 3 possible actions: Allow, Deny, and Explicit Deny
An explicit deny overrides an allow
You can attach identity-based policies to the root user
AWS recommends assigning policies to individual users
7.
MULTIPLE CHOICE QUESTION
1 min • 1 pt
What would you use AWS Artifact for?
For configuring and managing security in a single pane of glass
For viewing all your security alerts from services like Amazon GuardDuty, Amazon Inspector, Amazon Macie, and AWS Firewall Manager
For getting the compliance-related information that matters to you, such as AWS security and compliance reports or select online agreements
For providing authentication, authorization, and user management for your web and mobile apps without the need for custom code
Access all questions and much more by creating a free account
Create resources
Host any resource
Get auto-graded reports
Continue with Google
Continue with Email
Continue with Classlink
Continue with Clever
or continue with
Microsoft
%20(1).png)
Apple
Others
Already have an account?
