Get All the Questions Covering Entire Syllabus from here : 2019 : This material is owned by HadoopExam.com . Please dont copy its bad Karma
Question-9: You are an owner of the CMKs, which can be used for data encryption. However, you don’t want anybody can use this CMKs. So you will need permissions in place through which you can control who can access the KMS, this permissions are defined in Key policy via Principal. Which of the following principal can be used in IAM Key policy?
- IAM User
- AWS Root Account
- IAM Roles
- Selected AWS Services
- IAM Groups
Detailed Explanation: Key Policy and Principal: Principal are the main identity which gets permissions, which are specified in Key Policy document for example root user, IAM user, IAM roles and AWS services. But remember IAM groups are not valid principal in a key policy.
All AWS Certification Products, Training, Books and PDF you must use are below