How to create an IAM User from AWS Console?
June 19, 2020 / Eternal Team
What is AWS Identity and Access Management (IAM)?
- As per AWS
- AWS Identity and Access Management (IAM) enables you to manage access to AWS services and resources securely. Using IAM, you can create and manage AWS users and groups, and use permissions to allow and deny their access to AWS resources.
- IAM is a feature of your AWS account offered at no additional charge. You will be charged only for use of other AWS services by your users.
- Fine-grained access control to AWS resource.
- Multi-factor authentication for highly privileged users.
- Analyze access.
- Integrate with your corporate directory.
Steps to create a new user are as follows
- First, log in to your AWS Console and select IAM from the list of services.
- Select the AWS access type
- Programmatic access The IAM user might need to make API calls, use the AWS CLI, or use the Tools for Windows PowerShell. In that case, create an access key (access key ID and a secret access key) for that user.
- AWS Management Console access If the user needs to access the AWS Management Console
- Select the Add user to group item and then click the Create group button to access Give the new group the name “Administrators” and select the AdministratorAccess item from the list of policies. Click the Create group button to move to the next phase of the procedure.
Step 9 (Optional if you want attach the policy to the newly created user)
- Note : we recommend to create group and attach the policy
- Select Attach existing policies directly.
- Search for AdministratorAccess and select the policy, then select Next: Tags.
- We can optionally add some info to our IAM user. But we’ll skip this for now. Click Next: Review.
- Note : (AWS Management Console access) this will show the password for the user
- (Programmatic access) This will show the Access ID & Secret access key of the user
- Download the CSV to get the details.