DEV Community

krish
krish

Posted on

AWS Cloud Services

Topic - AWS Cloud Services

A little brief about the AWS cloud - Amazon Web Services (AWS) is a cloud computing platform provided by Amazon. AWS services can offer an organization tools such as database storage, compute power, content delivery, and other user-friendly functionality services to help businesses grow and perform better.

Planning to cover most of the AWS topics which help for certification and daily usage in the organization. We will be discussing the first topic as the IAM service in AWS services.

IAM - Identity and Access Management - It manages the users and their level of access to the AWS Console.

Features -

  • Global access control of AWS.

  • Shared access to the AWS account.

  • Granular Permissions.

  • Identity Federation ( for example Active Directory Service, Facebook, Linkedin, etc. Platforms).

  • MFA - Multi-Factor Authenticator ( Use Google Authenticator for accessing the AWS as the second step for logging).

  • Provide temporary access for users and services where it is necessary.

  • Password rotation policy (Setting the rotation of password, conditions for a password for example string, char, num, etc).

  • Integrates with AWS different Services ( for example S3 Bucket, EC2 instance, Lambda, Fargate, etc).

  • Supports PCI DSS compliance ( Payment card industry for data storage standards) - It means helps to securely store credit cards and bank account of information.

The terminology used in the IAM -

  1. Users - It lists the people in the organization.

  2. Groups - Multiple users can be inherited into the group and can pass the same permissions to the users assigned to the group.

  3. Policy - It is being defined in the format called JSON. Where we can customize the policy and gives permission as User/Role/Group.

  4. Roles - It is created to assign the AWS resources. (for example S3 bucket, EC2 instance, etc).

Important Information regarding IAM -

  • IAM is universal for the AWS account.

  • Root account is the admin account created at the initial launch of the AWS.

  • Good practice to maintain MFA to the AWS account.

Top comments (0)