Click to edit Master title style

Identity and Access Management (IAM)

Member: Phan Ba Van
Phung Sy Linh
Ngo Quang Vinh
Do Duc Thuong

1
Click to edit Master title style
Introduce
• AWS Identity and Access Management
(IAM) enables to manage access to
AWS services and resourves securely.
• Create and manage AWS users and
groups, and use permissions to allow
and deny their access to AWS
resources.

2 2
Click to edit Master title style
Use case:

• Fine-grained access control to AWS resources

• Multi-factor authentication for highly privileged users
• Analyze access

IAM allows to:

• Manage IAM users and their access

• Manage IAM roles and their permissions
• Manage federated users and their permissions

3 3
Click to edit Master title style

4 4
Click to edit Master title style
Root

Group

User

5 5
Click to edit Master title style

6 6
Click to edit Master title style

7 7
Click to edit Master title style

8 8
Click toIAM
editPolicies
Masterinheritance
title style

9 9
 Version: policy
Sid: an indentifer
IAM Policies language version,
Click to edit
Structure Master title style
always include
for the statement
(optional)
“2012-10-17”
Effect: whether the
Id: an indentifer for statement allows or
the policy (optional) denies access (allow,
deny)
Principal:
Statement: one or account/user/role
more individual which this policy
statements (required) applied to
Action: list of actions
this policy allows or
denies
Resource: list of
resources to which
the actions applied to Condition: conditions for
when this policy is in
effect (optional)
10 10
Click to edit Master title style

• Password Policy
• Multi Factor Authentication (MFA)
• IAM security tool
• IAM Guidelines

11 11
Click to edit Master title style

Thank You!!!

12