- IAM User
- AWS Root Account
- IAM Roles
- Selected AWS Services
- IAM Groups
Ans: A,B,C,D
Detailed Explanation: Key Policy and Principal: Principal are the main identity which gets permissions, which are specified in Key Policy document for example root user, IAM user, IAM roles and AWS services. But remember IAM groups are not valid principal in a key policy.