A __________ is the concept of allowing (or disallowing) an entity such as a user, group, or role some type of access to one or more resources.

D

D

A doesn’t make sense.

A permission is the concept of allowing (or disallowing) an entity such as a user, group, or role some type of access to one or more resources.

D

B

D

Permissions can be assigned among Users/groups/roles

The right answer is Option D :Permission

D

http://docs.aws.amazon.com/IAM/latest/UserGuide/access_permissions.html

Permissions let you specify who has access to AWS resources, and what actions they can perform on those resources.

D

A statement within a policy that allows or denies access to a particular resource. You can state any permission like this: “A has permission to do B to C.” For example, Jane (A) has permission to read messages (B) from John’s Amazon SQS queue (C). Whenever Jane sends a request to Amazon SQS to use John’s queue, the service checks to see if she has permission and if the request satisfies the conditions John set forth in the permission.

http://docs.aws.amazon.com/general/latest/gr/glos-chap.html#P

Answer – D

Overview of Access Management: Permissions and Policies

The access management portion of AWS Identity and Access Management (IAM) helps you to define what a user or other entity is allowed to do in an account, often referred to as authorization.

Permissions are granted through policies that are created and then attached to users, groups, or roles.

http://docs.aws.amazon.com/IAM/latest/UserGuide/introduction_access-management.html