AWS Identity and Access Management (IAM)

In this section will go through the basics of Identity and Acess Management (IAM) service.

What is IAM?

In short - this service is the main building block of AWS, and understanding it is one of the keys to understanding exactly how AWS works.

IAM manages user permissions and access boundaries, allows one AWS service to call other AWS services, defines workload permissions, etc.

AWS always follows the least privilege principle, meaning that by default, a user or any workload is quite limited in terms of permissions and can't call other services. For example, by default, the newly created Lambda function doesn't have permission to get objects from any S3 buckets. To give this permission, you should do it explicitly.

PreviousCreating an AWS account NextIAM Basics Overview

Last updated 2 years ago

Was this helpful?