- AWS IAM service is like a security guard- its environment are authenticated and authorized.- building blocks of AWS IAM are IAM roles, IAM https://thinkcloudly.com/wp-content/uploads/2022/09/Google-Cloud-Architect.pngs, groups and policies
What is AWS IAM?
Write best practices to manage access to AWS resources?
- Do not use root accounts- Use Groups-Enable Multi-factor Authentication (MFA)-Grant least privileges
- IAM groups are collections of IAM https://thinkcloudly.com/wp-content/uploads/2022/09/Google-Cloud-Architect.pngs. - Users are organized into groups -- Assign permissions in bulk rather than individually for each https://thinkcloudly.com/wp-content/uploads/2022/09/Google-Cloud-Architect.png. - permissions are automatically inherited
Explain AWS IAM Policies
- Determine who has access to what resources in your account. - https://thinkcloudly.com/wp-content/uploads/2022/09/Google-Cloud-Architect.pngs access to all Amazon EC2 instances- just a specified instance.
Which are the key features of AWS IAM?
– Access control to AWS resources– Multi-factor authentication (MFA)– Federated access– Analytics