AWS Certified SysOps Administrator – Associate (legacy) — Question 784
The ______ IAM policy element describes the specific action or actions that will be allowed or de-nied.
Answer options
- A. Principal
- B. Action
- C. Vendor
- D. Not Principal
Correct answer: B
Explanation
The Action element in an IAM policy specifies the specific API operations that are allowed or denied by the policy statement. The Principal and Not Principal elements define the entity (user, account, or service) to which the permissions apply, while Vendor is not a recognized IAM policy element.