IAM : Identity Access Management
IAM service use under the security , identity , compliance purpose .
- This service is mostly use for the sharing the resources of the AWS
- no additional cost for using this service for your work and project , it's totally free
- Availability : Global (worldwide)
- for using any kind of resources of AWS the developer give permission to user , group
USER VS USERGROUPS :
- if we have 10 user and we have to give same permission to all that 10 user then instead of giving permission to individually we create one group and put all that users in that same group and allow that permission to that group
now for assigning permission to user we need to create the user
Creating the user need 4 Steps :
Create the user :
Step : 1. Specifying the user details
- Give user name and password
- in the password follow the standard like uppercase, lowercase , special character and digit all this thing you need to put in the password
- Set the permission :
- Add user in particular group , or create the group and give permission of using the services
- Here we are creating the group for adding the user inside of it
- After creating the group assign permission policies ,
- there are some common policies already there and you can also create the customize policies according to your need
Policies :
- Policies define the permissions in json format
MFA: Multi Factor Authentication
- MFA useful for enhancing the security
- it's like adding the one more layer of the security
- In MFA we add one more security parameter despite of having username and password
- this steps improve the authenticity that it's the right person who access the resource