🔷Understanding AWS Identity and Access Management (IAM) Service

Gayatri ShindeGayatri Shinde
3 min read

Table of contents

🔷What is IAM?

In AWS (Amazon Web Services), IAM stands for Identity and Access Management. It's a web service that helps you control access to AWS resources in a secure manner. With IAM, you can:

  1. Manage Users and Groups: Create and manage AWS users and groups, and use permissions to allow or deny access to AWS resources.

  2. Set Permissions: Define what actions users and groups can perform on specific AWS resources using policies. These policies are written in JSON and provide fine-grained access control.

  3. Use Roles: Create roles with specific permissions and allow AWS services or users from other accounts to assume those roles. Roles are useful for granting temporary access or for allowing different AWS services to interact with each other.

⭐AWS IAM Users

IAM users represent individuals or services that need access to AWS resources. Each user has unique credentials.

AWS Management Console

  • Create a User:

    1. Sign in to the AWS Management Console.

    2. Open the IAM console at IAM Dashboard.

    3. In the navigation pane, click Users.

    4. Click Add user.

    5. Enter a User name, select Access type (e.g., Programmatic access and/or AWS Management Console access).

    6. Click Next: Permissions.

    7. Set permissions as needed and click Next: Tags.

    8. (Optional) Add tags and click Next: Review.

    9. Click Create user.

⭐AWS IAM Groups

  • Add users in same group

  • IAM user group is collection of IAM users

  • Their are many users managing them by singularly you can put them all in group and manage by them all at ones.

AWS Management Console

  • Create a Group:

    1. Sign in to the AWS Management Console.

    2. Open the IAM console at IAM Dashboard.

    3. In the navigation pane, click Groups.

    4. Click Create New Group.

    5. Enter a Group name and click Next Step.

    6. Attach policies to the group as needed and click Next Step.

    7. Review and click Create Group.

⭐AWS IAM Policies

IAM policies are JSON documents that specify permissions. They determine what actions are allowed or denied for specific resources.

AWS Management Console

  • Create an Inline Policy:

    1. Sign in to the AWS Management Console.

    2. Open the IAM console at IAM Dashboard.

    3. In the navigation pane, click Users, then select the user.

    4. Click the Permissions tab and then Add inline policy.

    5. Enter the policy JSON or use the visual editor, then click Review policy.

    6. Enter a Policy name and click Create policy.

⭐AWS IAM Roles

IAM roles are used to delegate access with temporary credentials to AWS resources.

AWS Management Console

  • Create a Role:

    1. Sign in to the AWS Management Console.

    2. Open the IAM console at IAM Dashboard.

    3. In the navigation pane, click Roles.

    4. Click Create role.

    5. Choose the type of trusted entity (e.g., AWS service) and click Next: Permissions.

    6. Select the policies to attach and click Next: Tags.

    7. (Optional) Add tags and click Next: Review.

    8. Enter a Role name and click Create role.

0
Subscribe to my newsletter

Read articles from Gayatri Shinde directly inside your inbox. Subscribe to the newsletter, and don't miss out.

AWSIAM

Written by

Gayatri Shinde
Gayatri Shinde

👋 Hey there! I'm Gayatri, I have completed a degree in Computer Engineering. I am extensively involved in the fields of DevOps and Cloud computing.