AWS Certified Solutions Architect - Associate (SAA-C02)

Sign Up Free or Log In to participate!

IAMLab

In this lab we want to remove access of all developers ( dev1, dev2 and dev3) from customer data bucket (S3). Can we achieve it by removing S3 admin policy and creating S3 restricted policy, assign to developergroup. Why are we creating role and assigning it to one user (dev1) and then dev3 is assuming the role from dev1

1 Answers

I thought the same thing. Isn’t it best practice to just change to policy for the developer group so that Dev1, 2, and 3 all have the same restricted permissions?

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?