When most people begin their cloud journey, they focus on launching servers, deploying apps, and building projects.
But there’s something just as important if not more:
Who has access to your cloud environment… and what can they do?
This is where AWS Identity Center comes in.
During my cloud engineering training, one of the foundational tasks I completed was setting up Identity Center, creating users, and assigning permissions properly. It may seem like a small step, but in reality, it’s how secure and scalable cloud environments are built.
In this article, I’ll walk you through:
Why it matters
How to configure it
How to create users and assign permissions
Let’s get into it.
Why This Matters
In real-world environments:
Multiple engineers access AWS
Teams have different responsibilities
Security is non-negotiable
Without proper identity management:
❌ Anyone could access sensitive resources
❌ Permissions could be too broad
❌ Auditing becomes difficult
With Identity Center:
✅ Access is controlled
✅ Permissions are clearly defined
✅ Security is enforced
Step 1: Enable AWS Identity Center
- Go to the AWS Management Console
- Search for “AWS Identity Center”
- Click Enable
Once enabled, AWS creates an Identity Center instance for your account.
This is your central identity management system.
Step 2: Create a New User
Next, you’ll create a user that can access AWS resources.
Steps:
- Navigate to Users
- Click Add user
Enter:
Username
Email address
First and last nameSave the user
This represents a real person (or team member) who needs access.
Step 3: Assign a Permission Set
Permissions define what the user can actually do.
In this task, we use a predefined job function policy:
SecurityAudit
What This Policy Does:
Provides read-only access
Allows users to review configurations
Ideal for auditing and compliance checks
Steps to Assign:
- Go to AWS Accounts
- Select your account
- Click Assign users or groups
- Select the user you created
- Choose Permission Set → SecurityAudit
- Complete the assignment
How It All Comes Together
At this point:
Identity Center is enabled
A user has been created
Permissions have been assigned
This means:
✔ The user can log in
✔ They have controlled access
✔ They cannot make destructive changes
This is real-world security in action.
This also demonstrates:
Proper configuration
Successful user creation
Correct permission assignment
Best Practices (What I Learned Along the Way)
Never Use Root Account for Daily Tasks
Always use Identity Center or IAM users.Follow Least Privilege Principle
Only grant permissions necessary for the task.Use Roles Instead of Static Credentials
Temporary access is safer.Group Users When Scaling
Instead of assigning permissions individually, use groups.
Why This Step Is Bigger Than It Looks
This isn’t just about clicking through AWS.
It teaches you:
How organizations manage access
How security is enforced at scale
How to think like a cloud engineer
Because in the real world:
Security is not optional it’s foundational.
Setting up AWS Identity Center and assigning permissions is one of those foundational skills that separates beginners from professionals.
It’s not flashy but it’s critical and if you understand this, you’re not just learning cloud you’re learning how to build secure systems that people can trust.
I’m also excited to share that I’ve been able to secure a special discount, in partnership with Sanjeev Kumar’s team, for the DevOps & Cloud Job Placement / Mentorship Program.
For those who may not be familiar, Sanjeev Kumar brings over 20 years of hands-on experience across multiple domains and every phase of product delivery. He is known for his strong architectural mindset, with a deep focus on Automation, DevOps, Cloud, and Security.
Sanjeev has extensive expertise in technology assessment, working closely with senior leadership, architects, and diverse software delivery teams to build scalable and secure systems. Beyond industry practice, he is also an active educator, running a YouTube channel dedicated to helping professionals successfully transition into DevOps and Cloud careers.
This is a great opportunity for anyone looking to level up their DevOps/Cloud skills with real-world mentorship and career guidance.
Do refer below for the link with a dedicated discount automatically applied at checkout;
DevOps & Cloud Job Placement / Mentorship Program.
If you also found this interesting and would love to take the next steps in the application process with AltSchool Africa do use my referral link below;
Apply here or use this Code: W2jBG8 during the registration process and by so doing, you will be supporting me and also getting a discount!
Special Offer: By signing up through the link and using the code shared, you’ll receive a 10% discount!
Don’t miss out on this opportunity to transform your future and also save while doing it! Let’s grow together in the tech space. Also feel free to reach out if you need assistance or clarity regarding the program.
I’m Ikoh Sylva, a passionate cloud computing enthusiast with hands-on experience in AWS. I’m documenting my cloud journey here from a beginner’s perspective, aiming to inspire others along the way.
If you find my contents helpful, please like and follow my posts, and consider sharing this article with anyone starting their own cloud journey.
Let’s connect on social media. I’d love to engage and exchange ideas with you!
Top comments (0)