A naukri.com initiative
Dev
4w
342
Image Credit: Dev
AWS Identity and Access Management
- Authentication ensures that the user is who they say they are.
- AWS Identity and Access Management is an AWS service that helps you manage access to your AWS account and resources.
- To help control access and manage identities in your AWS account, IAM offers many features to ensure security.
- The AWS root user is an all-powerful and all-knowing identity in your AWS account. If a malicious user gains control of root-user credentials, they can gain access to every resource in your account.
- An IAM user represents a person or service that interacts with AWS. Any activity done by that user is billed to your account.
- An IAM group is a collection of users. All users in the group inherit the permissions assigned to the group.
- To manage access and provide permissions to AWS services and resources, you create IAM policies and attach them to an IAM identity. Whenever an IAM identity makes a request, AWS evaluates the policies associated with them.
- IAM roles are created and then “assumed” by trusted entities and define a set of permissions for making AWS service requests.
- The AWS Security Token Service is a web service that enables you to request temporary, limited-privilege credentials for IAM users or for users that you authenticate (federated users).
- Use IAM appropriately. IAM is used to secure access to your AWS account and resources. IAM is not used for website authentication and authorization, such as providing users of a website with sign-in and sign-up functionality. IAM also does not support security controls for protecting operating systems and networks.
Read Full Article
20 Likes
For uninterrupted reading, download the app