Identity and Access Management#

Now we come to our first service in AWS: IAM.

We use IAM to define all of our security policies inside of AWS. We achieve this by defining security resources inside of IAM:

1. Users
2. Groups
3. Policies
4. Roles

There is also a core element inside of IAM that you should know well: the Principal.

IAM's ultimate goal is to protect access to resources inside of your AWS account or accounts. Let's explore how that's done by looking at each of the above IAM resources.

Key Points#

• Terminology
• Users
• Groups
• Policies
• Evaluation Workflow
• Programmatic Access