An organization has applied the below mentioned policy on an IAM group which has selected the
IAM users. What entitlements do the IAM users avail with this policy?
{
“Version”: “2012-10-17”,
“Statement”: [
{
“Effect”: “Allow”,
“Action”: “*”,
“Resource”: “*”
} ] }
A.
The policy is not created correctly. It will throw an error for wrong resource name
B.
The policy is for the group. Thus, the IAM user cannot have any entitlement to this
C.
It allows full access to all AWS services for the IAM users who are a part of this group
D.
If this policy is applied to the EC2 resource, the users of the group will have full access to the
EC2
Resources
Explanation:
AWS Identity and Access Management is a web service which allows organizations to manage
users and user permissions for various AWS services. The IAM group allows the organization to
specify permissions for a collection of users. With the below mentioned policy, it will allow the
group full access (Admin. to all AWS services.
{
“Version”: “2012-10-17”,
“Statement”: [
{
“Effect”: “Allow”,
“Action”: “*”,
“Resource”: “*”
}]}
C
C Action and Resource are set to “*” wild card which includes everything.