Identity and Access Management (IAM)

Is it ok to share root credentials? No. So AWS provides a way to manage adminstrative access over resources. It allows you manage access of compute, storage, database and application services. IAM uses access groups for user groups and permissions. Operating becomes easy because we are familiar with these access groups.

Features

Shared access to your AWS account

You do not need to share your root credentials for giving access to the other user. You can give permission to other user to administrate AWS resources.

Granular permissions

IAM allows you to provide various permission to the different AWS resources. A specific user can have full access over EC2 and S3. Other user can have read only access to the S3 buckets.

Secure access to AWS resources for applications which runs on Amazon EC2

An application running on EC2 instance needs special permission to access other AWS services like S3, DynamoDB, RDS databases etc. Using IAM features you can provide secure permission to the application.

Multi-factor authentication (MFA)

MFA is used to provide maximum security to AWS resources. User need to provide MFA code with password and access key.

Identity federation

You can provide temporary access to your AWS account by using internet identity provider or a user can use their existing password that they might already have on their corporate account.

Identity information for assurance

AWS CloudTrail can be used to generate logs records that contain information about who made the request and for what resources. Logs records are generated on IAM identities.

PCI DSS Compliance

All data related to credit cards are stored and processed safely. IAM supports PCI and DSS compliance.

Eventually Consistent

IAM supports eventually consistent model.

Free To Use

IAM is free, there is no additional charges for creating IAM roles, policies and adding new users.

UtterlyCloud

• admin@utterlycloud.com
• India