Amazon Web Service - IAM Practical | Beginner Tutorial | Part- 1 | 2021
What is IAM? ANS. AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources. You use IAM to control who is authenticated (signed in) and authorized (has permissions) to use resources. Essentially, IAM allows you to Manage users and their level of access to aws consol it is important to understand IAM and how it works, both for exam and for administrating a company's AWS account in real life IAM Features 1. Shared access to your AWS account:- You can grant other people permission to administer and use resources in your AWS account without having to share your password or access key 2. Granular permissions: You can grant different permissions to different people for different resources 3. Multi-factor authentication (MFA): You can add two-factor authentication to your account and to individual users for extra security 4. Identity federation: You can allow users who already have passwords elsewhere for example, in your corporate network or with an internet identity provider (including Active Directory, FaceBook, LinkedIn, etc.) 6. Provides temporary access for users/devices and service as necessary 7. Centralized control of your AWS Account 8. Allows you to setup your own password rotation policy Terms In IAM: 1. User - End User(people) 2. Group - A collection of users under one set of permission 3. Roles - you create roles and can then assign them to AWS Resources (ex- EC2) 4. Policy - A document that defines one (or more) permission Point to remember: IAM is universal - it does not apply to any regions. root account:- account created when first setup your AWS account. It has complete admin Access. new user:- 1. new Users have NO Permission when first created. 2. Assigned Access key id & secret access key when 1st created 3. these are not same as password, one cannot use the access key id & secret access key to login into aws console 4. use for access AWS via API and command line. 5. only get/view key only once. if lose them, need to regenerate new Thanks For giving Your Valuable time. Regards, Parag Cloud e-Learning Team
What is IAM? ANS. AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources. You use IAM to control who is authenticated (signed in) and authorized (has permissions) to use resources. Essentially, IAM allows you to Manage users and their level of access to aws consol it is important to understand IAM and how it works, both for exam and for administrating a company's AWS account in real life IAM Features 1. Shared access to your AWS account:- You can grant other people permission to administer and use resources in your AWS account without having to share your password or access key 2. Granular permissions: You can grant different permissions to different people for different resources 3. Multi-factor authentication (MFA): You can add two-factor authentication to your account and to individual users for extra security 4. Identity federation: You can allow users who already have passwords elsewhere for example, in your corporate network or with an internet identity provider (including Active Directory, FaceBook, LinkedIn, etc.) 6. Provides temporary access for users/devices and service as necessary 7. Centralized control of your AWS Account 8. Allows you to setup your own password rotation policy Terms In IAM: 1. User - End User(people) 2. Group - A collection of users under one set of permission 3. Roles - you create roles and can then assign them to AWS Resources (ex- EC2) 4. Policy - A document that defines one (or more) permission Point to remember: IAM is universal - it does not apply to any regions. root account:- account created when first setup your AWS account. It has complete admin Access. new user:- 1. new Users have NO Permission when first created. 2. Assigned Access key id & secret access key when 1st created 3. these are not same as password, one cannot use the access key id & secret access key to login into aws console 4. use for access AWS via API and command line. 5. only get/view key only once. if lose them, need to regenerate new Thanks For giving Your Valuable time. Regards, Parag Cloud e-Learning Team