Which three AWS policy types and identities are used to calculate the net effective permissions? (Choose three.)
Which three AWS policy types and identities are used to calculate the net effective permissions? (Choose three.)
To determine the net effective permissions in AWS, three key elements are taken into account: AWS IAM groups, AWS IAM roles, and AWS service control policies (SCPs). IAM groups aggregate permissions for users by attaching policies that grant or deny permissions. IAM roles grant permissions through policies to entities that assume the role. Service control policies are used in AWS Organizations to manage permissions across all accounts in the organization. All three of these components together help calculate the net effective permissions for a user or a service.
AWS IAM role AWS IAM policy AWS IAM group AWS service control policies (SCPs) Role trust relationships Permission boundaries NotAction Policies with wild card support
https://docs.prismacloud.io/en/classic/cspm-admin-guide/prisma-cloud-iam-security/context-used-to-calculate-effective-permissions A B C