An organization (Account ID 123412341234. has attached the below mentioned IAM policy to a user. What does this policy statement entitle the user to perform?

Last Updated on October 29, 2021 by Admin 2

An organization (Account ID 123412341234. has attached the below mentioned IAM policy to a user. What does this policy statement entitle the user to perform?

SOA-C01 AWS-SysOps ​​​​​Part 07 Q06 002
SOA-C01 AWS-SysOps ​​​​​Part 07 Q06 002
  • The policy allows the IAM user to modify all IAM users’ access keys using the console, SDK, CLI or APIs
  • The policy allows the IAM user to modify all IAM users’ credentials using the console, SDK, CLI or APIs
  • The policy allows the IAM user to modify all credentials using only the console
  • The policy allows the IAM user to modify the IAM user’s own credentials using the console, SDK, CLI or APIs
Explanation:
AWS Identity and Access Management is a web service which allows organizations to manage users and user permissions for various AWS services. If the organization (Account ID 123412341234. wants some of their users to manage keys (access and secret access keys. of all IAM users, the organization should set the below mentioned policy which entitles the IAM user to modify keys of all IAM users with CLI, SDK or API.
SOA-C01 AWS-SysOps ​​​​​Part 07 Q06 003
SOA-C01 AWS-SysOps ​​​​​Part 07 Q06 003
0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments