AWS Identity and Access Management 101

AWS Identity and Access Management (IAM) is one of the very popular, free to use, and significant web service that allows end users to manage users, groups, roles, credentials, Identity federation to allow corporate users to get temporary access to AWS account, multi factor authentication, and user permissions in AWS. 

Useful Scenarios:

Roles are assigned to AWS resources. Policy is set of permissions.

71.1 AWS Identity and Access Management

What is Root Account Credentials?

When we sign up for a Free tier account for example; we provide email and password. We use this email and password to log in to AWS Management Console. This combination of email and password is known as "Root Account Credentials."

It has Administrative access to all resources in AWS account.

There are pre-build policy templates such as Administrator Access, Power user Access (No User and Group Management), Read Only Access.


IAM provides very granular level of control and automated policy creation. Let's take an example of Sample spring file deployment on AWS. IAM can be helpful in creating Amazon EC2 instances, instillation and configuration of an application.

Now let's go to Amazon Management Console and click on Identity & Access Management.

Just take a note that Password Policy is renamed to Account Settings. 

Labels: , , ,