AWS IAM

Covers features and elements of IAM

1. What is IAM?
2. Groups, Users and Roles
3. IAM Policies
4. MFA
5. IAM Federation
6. IAM Features

Get the details last from the understanding

What is IAM?

To manage, control and govern authentication, authorization and access control mechanisms of identities to your resources within AWS Account.

IAM Components

1. Users
2. Groups
3. Roles
4. Policies
5. Access control and mechanisms.

IAM is globally avaliable AWS services, ie. IAM is not regionally available services and we can create regional specific policies and accesses to an AWS resources.

Without IAM there is no way of maintaining security or control access to the resources. IAM provides components to manage access, but it is only as strong as we configure it. The responsibility of implementing secure, robust and tight security within AWS is ours.

You can find the IAM services under security, Identity and compliance.

All services -> Security, Identity and compliance -> IAM (Manage access to AWS resources)

IAM Responsibilities:

1. How secure your access control procedures must be?
2. How much should admin restrict users access?
3. How complex password policies must be?
4. Resource should use MFA or not?

Admin can architect and implement upto the policies and security guidances from the company or self.

Restrictions and access are purely based on our own security standards and policies within our information and security management systems.

Elements of AWS

1. Users, Groups & Roles
2. Policies & MFA

Other resources:
aws.plainenglish.io