CLF-C02 - Security and Compliance - Section 2.5
Identify AWS Identity and Access Management capabilities, defining users, groups, roles and managed and custom policies in line with the principle of least privilege.
Define IAM users, groups, roles, and policies, and apply the principle of least privilege to grant only the permissions needed to perform a task. Distinguish managed policies from inline policies and understand when to use roles - particularly for granting permissions to AWS services and cross-account access - over long-lived user credentials.
AWS Identity and Access ManagementIAM policiesLeast privilegeIAM roles
More in this domain
Back to all Security and Compliance objectives, or the CLF-C02 cert hub.
Examworthy is not affiliated with or endorsed by Amazon Web Services. Original, blueprint-aligned practice material only.