AWS Certified SysOps Administrator SOA-C01 – Question465

In IAM, a policy has to include the information about who (user) is allowed to access the resource, known as the _____.

A.
permission
B. role
C. license
D. principal

Correct Answer: D

Explanation:

Explanation: To specify resource-based permissions, you can attach a policy to the resource, such as an Amazon SNS topic, an Amazon S3 bucket, or an Amazon Glacier vault. In that case, the policy has to in-clude information about who is allowed to access the resource, known as the principal. (For user-based policies, the principal is the IAM user that the policy is attached to, or the user who gets the policy from a group.) Reference: http://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html