Is there a limit to the number of groups you can have?
A.
Yes for all users except root
B.
No
C.
Yes unless special permission granted
D.
Yes for all users
Is there a limit to the number of groups you can have?
Is there a limit to the number of groups you can have?
D
The following are the default maximums for IAM entities:
Groups in an AWS account: 100
…..
Source: http://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-limits.html
C. As you can request to have the default limited increased.
“Currently you can request to increase the limit on users per AWS account, groups per AWS account, roles per AWS account, instance profiles per AWS account, and server certificates per AWS account.”
C
Currently you can request to increase the limit on users per AWS account, groups per AWS account, roles per AWS account, instance profiles per AWS account, and server certificates per AWS account.
http://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-limits.html
C is the right answer
C
You can request to increase some of these quotas for your AWS account on the IAM Limit Increase Contact Us Form. Currently you can request to increase the limit on users per AWS account, groups per AWS account, roles per AWS account, instance profiles per AWS account, and server certificates per AWS account.
C Yes unless special permission granted
D is the right answer.
C is not correct because even after you request an increase you still have a limit even if it is higher. There is no special permission no remove the limit altogether.
I choose D
Answer: D
Reason:
Groups a user can be a member of: 10
Currently you can request to increase the limit on users per AWS account, groups per AWS account, roles per AWS account, instance profiles per AWS account, and server certificates per AWS account.
In the aws documentation, It mentions you could request to increase the groups per aws account, not the groups per aws user
D
http://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-limits.html
Answer is = D
The following are the default maximums for IAM entities:
Groups in an AWS account: 100
Users in an AWS account: 5000
If you need to add a large number of users, consider using temporary security credentials. For more information about temporary security credentials, go to Temporary Security Credentials.
Roles in an AWS account: 250
Instance profiles in an AWS account: 100
Roles in an instance profile: 1 (This limit of one role per instance cannot be increased.)
Groups a user can be a member of: 10
Access keys assigned to a user: 2
Access keys assigned to the AWS root account: 2
MFA devices in use by a user: 1
MFA devices in use by the AWS root account: 1
Virtual MFA devices (assigned or unassigned) in an AWS account: equal to the user quota for the account
Signing certificates assigned to a user: 2
Server certificates stored in an AWS account: 20
Aliases for an AWS account: 1
Login profiles for a user: 1
SAML providers in an AWS account: 100
Identity providers (IdPs) associated with an IAM SAML provider object: 10
Keys per SAML provider: 10
Customer managed policies for an AWS account: 1000
Versions of a managed policy that can be stored: 5
Managed policies attached to an IAM user, group, or role: 10
You can request to increase some of these quotas for your AWS account on the IAM Limit Increase Contact Us Form. Currently you can request to increase the limit on users per AWS account, groups per AWS account, roles per AWS account, instance profiles per AWS account, and server certificates per AWS account.
The following are the maximum lengths for entities:
Path: 512 characters
User name: 64 characters
Group name: 128 characters
Role name: 64 characters
Important
If you intend to use a role with the Switch Role feature in the AWS console, then the combined Path and RoleName cannot exceed 64 characters.
Instance profile name: 128 characters
Unique ID (applicable to users, groups, roles, managed policies, and server certificates): 32 characters
Policy name: 128 characters
Certificate ID: 128 characters
Login profile password: 1 to 128 characters
AWS account ID alias: 3 to 63 characters
Role trust policy (the policy that determines who is allowed to assume the role): 2,048 characters
Role session name: 64 characters
For inline policies: You can add as many inline policies as you want to a user, role, or group, but the total aggregate policy size (the sum size of all inline policies) per entity cannot exceed the following limits:
User policy size cannot exceed 2,048 characters
Role policy size cannot exceed 10,240 characters
Group policy size cannot exceed 5,120 characters
Note
IAM does not count whitespace when calculating the size of a policy against these limitations.
For managed policies: You can add up to 10 managed policies to a user, role, or group. The size of each managed policy cannot exceed 5,120 characters.
Note
IAM does not count whitespace when calculating the size of a policy against this limitation.
D
There’s a limit to the number of groups you can have, and a limit to how many groups a user can be in.
http://docs.aws.amazon.com/IAM/latest/UserGuide/id_groups.html