{"id":1175,"date":"2022-06-07T11:09:13","date_gmt":"2022-06-07T11:09:13","guid":{"rendered":"https:\/\/www.checkmateq.com\/blog\/?p=1175"},"modified":"2023-08-07T08:50:12","modified_gmt":"2023-08-07T08:50:12","slug":"iam-user","status":"publish","type":"post","link":"https:\/\/www.checkmateq.com\/blog\/iam-user","title":{"rendered":"How to create an IAM user"},"content":{"rendered":"

Identity and Access Management (IAM)\u00a0<\/strong>is an AWS cloud service<\/a> that allows you to manage access<\/strong> to other AWS cloud services in a secure manner<\/strong>. Using Identity and Access Management we can manage who is authenticated<\/strong> (signed in) and allowed (granted permissions) to access resources<\/strong>.<\/p>\n

AWS cloud IAM Identities(users, user groups, and roles):<\/strong><\/p>\n

IAM identity provides access to the AWS account. These identities can be created by the AWS account root user or an IAM administrator for the account. A root user has access to all AWS services and resources and it gets created when we create our AWS account.<\/p>\n

IAM users<\/strong> are entities that represent the person or application that interacts with AWS. In AWS, name, and credentials are required to define a user.<\/p>\n

The term “IAM user group<\/strong>” refers to a group of IAM users. These user groups allow you to specify permissions for many users, thus making it easier to manage those users’ permissions.<\/p>\n

A specific permissioned IAM identity that you can create in your account is called an IAM role<\/strong>. In the same way that an IAM user is an AWS identity, an IAM role is an AWS identity with authorization policies that define what the identity can and cannot do in AWS. A role, on the other hand, is intended to be assumed by anyone who needs it, rather than being tied to a single individual.<\/p>\n

Steps to create an IAM user:<\/strong><\/h3>\n

We will be creating a user who would have access to only a particular folder in an s3 bucket.<\/strong><\/p>\n