Skip to content
This repository was archived by the owner on Jan 10, 2022. It is now read-only.

IAM

Jump to bottom
Milad Khakpour edited this page Jan 15, 2020 · 3 revisions

Identity and Access Management (IAM)

create an AWS Identity and Access Management (IAM) user specifically for this course. This IAM user will have limited access to the AWS resources required by this project. As a best practice, make sure to use the username and password of the IAM user you create (rather than your root credentials) to sign in to the AWS Management Console.

CloudTrail

to check the user/s activities

Steps

  1. Create an IAM policy
  • In the AWS Management Console, click Services, then click IAM to open the IAM dashboard.
  • In the left navigation menu, click Policies.
  • Click Create policy.
  • Click the JSON tab.
  • Click Review Policy.
  • For Name, type SampleDeployPolicy
  • Click Create .

NOTE You have successfully created an IAM policy. When you create IAM policies, follow the standard security advice of granting least privilege - that is, granting only the permissions required to perform a task. Determine what users need to do and then craft policies for them that let the users perform only those tasks.

  1. Create IAM
  • In the AWS Management Console, click Services, then click IAM to go to the IAM dashboard.
  • In the left navigation menu, click Users.
  • Click Add user.
  • In the User name text box, type sampleDeployingUser
  • For Access type, select AWS Console access.
  • For Console password, you may choose either Autogenerated password or Custom password. If you choose Autogenerated, you will be prompted to change your console password when you log in to the AWS Management Console as the sampleDeployingUser user. Make a note of the password.
  • Click Next: Permissions.
  • Under Set permissions for sampleDeployingUser section, click Attach existing policies directly.
  • In the search text box for Filter, type SampleDeployPolicy. Select SampleDeployPolicy from the filtered list.
  • Click Next: Review.
  • Review the information and click Create user. You should see a success message.
  • Make sure to note the password for the sampleDeployingUser. Note the sign-in URL in the success message at the top. This is a special URL for IAM users, which includes your account ID.
  • Sign out of the console, and sign back in as the sampleDeployingUser IAM user.

Home

Amazon AWS

Notes

Linux

GIT

Clone this wiki locally