CLF-C02 Domain 2: Security and Compliance

An IAM policy is:

Multiple choice — select one answer

Answer choices

  1. a. Only for tasks that require root credentials
  2. b. A physical security badge, without security or identity team coordination per policy.
  3. c. A type of EC2 instance, without security or identity team coordination per policy.
  4. d. A document defining permissions

Architectural breakdown & explanation

Policies are JSON documents that define what actions are allowed or denied.

Correct answer(s): d. A document defining permissions

Exam domain: Domain 2: Security and Compliance (30% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the AWS Certified Cloud Practitioner bank. Run a full timed practice exam with domain-weighted random questions in your browser.