Last active
January 23, 2019 18:30
-
-
Save michaelguild13/b87b7bc73a6b21ae351c695061f645e7 to your computer and use it in GitHub Desktop.
AWS - IAM Notes
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
IAM - Identity Access Management | |
Used to manage users, groups, roles, and polices. | |
IAM is universal which means that all users, groups, roles, permissions are not region specific ( at this time 2019 ). | |
You can setup password rotation policies, MultiFactor Authentication | |
Root Account | |
- the initial account used to create the aws account | |
- this should be the companies email account | |
- has complete admin access (god mode) | |
Users | |
- users belong to groups and can be assigned roles | |
- new users | |
- have no access | |
- are given an optional Access Key ID and Secret Key used to access api's and within the command line. | |
Cannot be used to access the console. | |
- Password, Access Key, and Secret Key can only be viewed once. You can reauto generate them. | |
Groups | |
- contains users | |
Roles | |
- Are assigned to AWS services | |
Policies | |
- Written in Json | |
- Define the permissions used by users, groups, and roles |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment