Creating IAM in AWS: Step-by-Step Guide

AWS IAM (Identity and Access Management) is a service provided by Amazon Web Services (AWS) that helps you manage access to your AWS resources, acting like a security system for your AWS account.

IAM allows you to create and manage users, groups, and roles.

Users: IAM users are individual people or entities (like applications or services) that use your AWS resources. Each user has a unique name and security credentials (password or access keys) for authentication and access control.

Groups: IAM groups are collections of users with similar access requirements. Instead of managing permissions for each user individually, you can assign permissions to groups, making it easier to manage access control. Users can be added or removed from groups as needed.

Roles: IAM roles give temporary access to AWS resources. They are usually used by applications or services that need to access AWS resources for users or other services. Roles have policies that specify what actions and permissions are allowed.

With IAM, you can control and define permissions through policies.

IAM policies are JSON documents that define permissions, specifying the actions that can be performed on AWS resources and the resources to which the actions apply. These policies can be attached to users, groups, or roles to control access. IAM provides both AWS managed policies (predefined policies maintained by AWS) and customer managed policies (policies created and managed by you).

Overall, IAM is a key part of AWS security. It gives you detailed control over who can access your AWS account and resources, lowers the risk of unauthorized access, and helps keep your environment secure.

Create an IAM role in AWS

Tap on users and create a new user
- Enter user name
- click on i want to create a new user
- Autogenrate password(user can create password by themselves when they login ones)