1.

IAM (Identity and Access Management)

Wednesday, January 17, 2018 7:24 PM

IAM

A. IAM User

AWS Certified Solutions Architect - Associate Page 1

Creating an IAM User :

1. Select IAM Service from the AWS Portal

AWS Certified Solutions Architect - Associate Page 2

2. Select the Users option from the left hand menu.

3. Click on Add User Button.

AWS Certified Solutions Architect - Associate Page 3

4. Enter the User name and click next.

5. Attach the policies needed for the User

AWS Certified Solutions Architect - Associate Page 4

6. Review the details and Click on create user button and user will get created. Once the user is getting
created download the credentials file as it is one time download option.

AWS Certified Solutions Architect - Associate Page 5

 7. User detail can be seen on User Page.

IAM Group

AWS Certified Solutions Architect - Associate Page 6

Create an IAM Group

1. Click on Group Option listed on left hand side. Click on the "Create New Group" Button

2. Enter the Group name.

AWS Certified Solutions Architect - Associate Page 7

3. Attach the policy needed for the group.

4. Review the Entries and click on Create Group button.

AWS Certified Solutions Architect - Associate Page 8

IAM Policy

Create an IAM Policy

1. Click on Policies option listed on left hand side and create on "Create policy" button.

AWS Certified Solutions Architect - Associate Page 9

2. We can use either Visual editor or directly json page for creating the policy.

3. Once the Policies has the needed permissions review it and after entering the name of the policy,
click on the "Create policy" button.

AWS Certified Solutions Architect - Associate Page 10

IAM Roles

Create an IAM Role

1. Click on Roles option listed on left hand side and Click on "Create role" button.

AWS Certified Solutions Architect - Associate Page 11

2. Select the Type of Trusted entity depending on the Role type. Here we will create a service role.

3. Attach the permission needed for the role.

AWS Certified Solutions Architect - Associate Page 12

4. Enter the role name and click on Create role button for creating the policy.

AWS Certified Solutions Architect - Associate Page 13

Identity Provider : A kind of provider that creates, maintains, and manages identity information for principals and
provides principal authentication to other service providers within a federation, such as with web browser profiles.”

Creating an Identity Provider

1. Click on "Identity Provider" option listed on left hand side and Click on "Identity Provider" button.

2. Upload the Metadata File for configuring the Provider.

AWS Certified Solutions Architect - Associate Page 14

 2. Upload the Metadata File for configuring the Provider.

Security Token Service (STS )

AWS Certified Solutions Architect - Associate Page 15

AWS Organizations :

AWS Certified Solutions Architect - Associate Page 16