โโAWS IAM User creation and Attaching Policy
I am a DevOps Engineer with an aim to learn and contribute to the Tech World!!
๐ Blogging and Sharing: On this platform, I'll be sharing insightful articles, tutorials, and tips on all things DevOps. Expect deep dives into CI/CD best practices, IaC patterns, containerization strategies, cloud optimization, and much more. Let's learn and grow together!
Topics to be covered as Hands-on๐๐
Create IAM user
Attaching custom policy to the user so that it can only those services that we are allowing in the custom policy
Log into the IAM user account and see that we are only able to access those aws services for which we have created custom policy and for other services of aws it is not allowing the IAM user to access those
Steps for Hands-on ๐๐
- First, go to the IAM from the search console in AWS and select IAM
then you will see the IAM dashboard that will have multiple components in IAM like user,user group ,roles , policy etc
select the user from Left side of the dashboard
then click Create User tab
Then provide the name for the user and then check the checkbox for allowing the aws console for this user and select the radio button for the creating IAM user
provide custom password for the IAM user and click next
Step2) In step two it will ask for set permission so select the radio button for attaching the policy directly and then click Create Policy button this will allow us to create our custom policy to the user
suppose here we are only giving S3 service of aws access to the IAM user so for that we can see that in the policy editor internally it is simply a JSON object that gets applied to the users , resources etc
and also in the json for s3 we can see below that we have allowed all actions related to s3 for this IAM USER
Then provide name for the policy and click create policy so in this way we can create multiple custom policies for users for accessing different aws service and even in that also we can allow what type of operations that user can perform for the service
Then select that custom policy that you have created -> next -> create user
then you will see the url for login to the IAM user account and there you will see the user name for the IAM user account
using these credentials we will log into the IAM user account
But for the login it will ask for the account ID and that account ID will be of the user account that is creating the IAM user
Step3) Log into IAM user
then you will be redirected to change password page
now you can see that you have logged in as IAM user if you see the top right of your screen of AWS console home
Now you can verify that you can only access for AWS s3 service and for other service of aws you will not access for IAM user
suppose we search for s3 and then we can see that we are able to create the S3 buckets
Now if we want to suppose access for EC2 service of aws for this IAM user then it will show that you are not authorised for ec2
Hence we have successfully implemented hands-on for AWS IAM
I'm passionate about DevOps and its potential to revolutionize how businesses operate. Reach out for a chat, and let's explore how I can help your team achieve its DevOps goals. Your next DevOps champion is just one click away! ๐ #DevOps #DigitalTransformation
Regards,
Amrit Manash๐๐
