IAM What I Am

And good Identity & Access Management needs no excuses

Written by Richard Fortune on July 11, 2018
Updated on December 19, 2020
This blog post has been restricted
Best practices for Identity & Access Management

Amazon Web Services (AWS) Identity and Access Management (IAM) is a powerful tool for controlling access to AWS resources. However, improper use of IAM can lead to security vulnerabilities, data breaches, and other serious issues.

Security is of the utmost importance to protect any organisation's digital assets: services and data. As more businesses migrate to cloud-based services, one of the biggest challenges they face is managing secure access to cloud resources under a shared responsibility model. In the context of AWS, Identity and Access Management (IAM) provides a centralized solution for managing access to AWS resources.

In this article, we will cover best practices for AWS IAM that can help you keep your cloud environment secure. By following these best practices, you can ensure that your organization's AWS resources remain secure and protected from unauthorized access or data breaches.

This blog post has been RESTRICTED

To continue reading, request access to the full post.

Request Access

x Xxxxxx xxxxxxxxxx xxxx xxxxxxxx

Xx xxxxxxxx xxxxxxxxxx XXX xxxxx, xxxxxx xxxxxxxxxxx xxx xxxxxxxxxxx xxx xxxxxxxx xx xxxx xxxx, xxxxxx xxxx xx xxxxxxxx xxxxx xxxx xx xxxxx xxxxxx xxxx xx xxxxxxxxxxx. Xxxxx xxxxxxxxxx XXX xxxxx xxxxxxxx xxxxxxxxxxxxxx xxx xxxxxxxxxxxx, xx xxxx xxxxxx xxxxxxxx xxx xx xxxxxx xxxxxxxxxx, xxxxxxxx xxxxxxxxxxxxx xx xxxxx xxx xxxxxxxxx xxxxxxxx xxxxxxx xxx xxxx. Xxxx xxx xx xxxxxxxxxx xxx xxxxxxxx xxxxxxxx xx xxx xxxxx xx x xxxxxxxx xxxxxxxx.

Xxxx xx xxxxxxxxxx xxxxxxxxx xx xxx xxxx xx Xxxxxxxxxx Xxxxxx Xxxxxxxxxx (XXX) xxxxx, xx xxxxx xxxx xxxxxxxx xxxxxxxxxx xxx xxxxxx xx xxxxxxxx xxxxxxx xxx xxxx. Xxxxxx xxxxxxxxxxxxxx, xxxxxxx xxxxxxxxx, xxx xxxxxxxx xxxxxxxxxxxxxx xxx xxxxxxxx xx XXX xxxxx. XXX xxxxxxxx xxxxxxxxxxx xxx xxxxxxxxxx xxxxxx xx xxxxx xxxxxxxx, xxxxxxxxx xxxxxxxx xxx xxxxxxxx xxxxxxxxxx xxx xxxxxxxxxxxxxx, xxx xxxxxxx xxx xxxxxxxx xxx xxxxxxxxxx xxxxxx. Xxxxxxxx xxxxxxxxxx XXX xxxxx xxxx xxxxxx xxxxx-xxxxxx xxxxxxxxxxxxxx (XXX) xx xx xxxxxxxx xx x xxx-xxxx xxxxx.

x Xxxxxxxxx x xxxxxx xxxxxxxx xxxxxx

X xxxxxx xxxxxxxx xxxxxx xx xxxxxxxxx xx xxxx xxxxxxxxx xxx xx xxxxxxx xx xxxxxxx xx xxxxxxx xxxx xxxx, xxxxxxxx xx xxxxxxxxxxxx xxxxxx xx xx xxxxxxxxxxxxxx XXX xxxxxxxxx. XXX xxxxxx xxx xxx xxxxxxxxxxxxx xx xxxxxxxx xxxxxxxx xxxxxxxx xx xxxxxx x xxxxxx xxxxxxxx xxxxxx xxx XXX xxxxx, xxxxxxxxx:

  • Xxxxxxxx XxxxxxX xxxxxxx xxxxxxxx xxxxxx xxx xx xxx xx x xx xxx xxxxxxxxxx
  • Xxxxxxxx XxxxxxxxxxXxxxxxxxx xxx xx xxxxxxxx xx xxxxxxx x xxxxxxxxxxx xx xxxxxxxxx xxx xxxxxxxxx xxxxxxx, xxxxxxx, xxx xxxxxxx xxxxxxxxxx
  • Xxxxxxxx XxxxxxxxxxX xxxxxxx xxxxxxxx xxx, xxxxx xxxxx xxxxx xxxx xx xxxxxxxx xx xxxxxx xxxxx xxxxxxxx
  • Xxxxxxxx XxxxxXxxxx xxx xx xxxxxxxxx xxxx xxxxxxx x xxxxxxx xxxxxx xx xxxxx xxxxxxxx xxxxxxxxx
  • Xxxxxxxx XxxxxxxXxx xxxxxx xx xxxxxxxxxx xxxx xxxxxxxxx xxxx XXX xxxxxx xxxxxxxx xxx xx xxxxxxxxx, xx xxxxxxx xxxxx xxxx xxxxxxxxx xxx xxxx

x Xxxxxx Xxxxxxxx Xxxxxxxxxxx Xxxxxxxxx

Xxxxxxxx xxxxxxxxxxx, xxxx xx xxxxxxxxx, xxxxxx xxxx, xxx xxxxxx xxxxxx xxxx, xxx xxxx xx xxxxxxxx xxxxxx XXX xxxxxxxxx. Xxxxxxxx xxxxx xxxxxxxxxxx xxxxxxxxx xx xx xxxxxxxxx xxxxxxxx xxxxxxxx xxxxxxx xx xxxxxxx xxx xxxx xx xxxxxxxxxxxx xxxxxx, xxxxx xxxxx xxxx xx xxxxx, xxxxxxxx, xx xxxxxxxxxx xx xxxx.

Xxxxxxxxx xxxxxxxx xxxxxxxx xxxxxxxxxxx xxxxxx xxx xxxxxx xx xxxx xxxx xxxxxxxxxxx xxxxxxxxxxx xxx xx xxxx xx xxxxxx XXX xxxxxxxxx. Xxxx xxxxx xx xxxxxxxx xxx xxxxxx xx x xxxxxxxxx xxxxxxxx xxxxxx xxx xxxxxx xxx xxxxxxx xxxxxxxx xx xx xxxxxxxxxxxxxx XXX xxxxxxxxx.

Xxxx xxxxxxxxxxx xx xxxxxxxx xx xxxx xxxx xx Xxxxxxxx Xxxxxxxxxxx Xxxxxxxx xx XXX

x Xxxxxxx Xxxxx-Xxxxxx Xxxxxxxxxxxxxx xxx Xxx Xxxxx

Xxxxx-Xxxxxx Xxxxxxxxxxxxxx xxxx xx xxxxx xxxxx xx xxxxxxxx xx xxxxxxxxx xxxxx xx xxxxxxx xxxx xxxx x xxxxxx xxxx xx xxxxxxxxxxxxxx xxxxxx xxxxx xxxxxxx xxxxxx xx xxxxx XXX xxxxxxx xx xxxxx xxxxxxx xx xxxxxxx xxxxxxx xxxxxxxxx xxxxxxxxxx.

Xxxxxxxx XXX xxx XXX xxxx xxxxxxxx xx xxxxxxxx xxxxxxx. XXX xxxxxxxxxx xxxx XXX xxxxxx xx xxxxxxx xxx xxx XXX xxxxx, xxx xxxxx xxx xxxxxxxx xxxxxx xx xxxxx xxxxxxxxxx xxxxxxxxxx xx xxxxxxxxxx xxxxxx xxxxxxxx xxxxxxxxx xxxx xxxxxxxx.

Xxx xxxx xxxxxx xxxxx xx xxxxxx xxx:

  • Xxxxxxxxx xxxx xxxxxxxx xx x xxxxxxxx xx x XXX xxxx xxxxxxxxx
  • Xxxxxxxxx xxxx xxxxxxxx xx x xxxxxxxxxx xx x xxxxxx XXX xxx
  • Xxxxxxxxx xxxx xxxxxxxxxxxx xxxx xx x xxxxxxxxxxx xx xxxxxx xxxxxxxxxxx

Xxxxxxx xxxxxxxxxxx xxx xxxxxx xx xxxxxxxx xx xxx xxxx, Xxxxx-Xxxxxx xx Xxx-Xxxxxx Xxxxxxxxxxxxxx

x Xxxxxx

Xxxxx XXX xxxxxx xxxxxx xxx xxx xxxxxxxxxx xx x xxx xx xxxxxxxxxxx xxx x xxxxx xx xxxxx, xxxxxx xxxx xxxxxx xx xxxxx xxxxxxxxxxx xxx xxxx xxxxxxxxxx xxxx xxxxxxx, xxxxx xxx xxxxxxxx xx xxxxxx xxx xxxxxxxxxxx xxx xxxxxxx xx xxxxx xxxxx. Xxxx xxxxx xx xxx xxxxxx xx xxxxxx, xxxxxx, xxxxxxx xxx xxxxx xxxxxxxxxxx xxx XXX xxxxxxxxx xx xxxxx.

Xxxxx XXX xxxxxx xxxxx xx xxxxxx xx xxxxxx xxx xxxxxxxxx xx xxxxx xxxxxxxxx, xx xxxxxxxxxxx xxx xx xxxxxxx xxxxxxxx xxx xxxxxxx xxxxx xx xxxxxx xxxxxxxx xxx xxxx xxxxx xx xxxxx xx xxxxxxx xxxxx xxxxxxxx xxx xxxxxxxxx, xxxxxxx xxxxxx xxx xxxx xx xxxxxxxxxxxx xxxxxx xx XXX xxxxxxxxx.

Xxx xxx xx xxxxxx xxxxxxxxxx xxx xxxx xx xxxxxxxx xxxxxxxxxxx xxxx xxxxxx, xx xxxxxxxxx xxx xxxxxxxxxxx xxxxxxxx xx xxxx xxxxx xxx xxxxxxxx xxxx xxx xx-xx-xxxx xxx xx xxxxxxxxxx xxxx xx xxxxxxxxxxxxxx xxxxxxxx xxxxxxxx. Xxxx xxxxx xx xxxxxxxx xxx xxxxxxxx xxx xxxxxxxxx xxxxxxxx xxxxx xx xxxx XXX xxxxxxxxxxx.

x Xxxxx Xxxxxxxxx

Xxx xxxxxxxxx xx xxxxx xxxxxxxxx xxxxxx xxxx xxxxx xxxxxx xxxx xx xxxxx xxx xxxxxxx xxxxx xx xxxxxx xxxxxxxxx xx xxxxxxx xxxxx xxx xxxxxxxxx, xxx xx xxxx.

Xxxx xxxxx xxxx xxxxxxxx xxxxxxxxxxx xx xxxxxx xx xxxxx xxxx xxx xxxxxxxx xxxxxxxxx xxx xxxx xx xxxxxxx xxxxx xxxxxx xxx xxxxxxx xxxx xxxxxx xx xxx xxxxx XXX xxxxxxxxx. Xxxx xxxx xxxxx xxx xxxxxx xxxxx xxx xxxxxx xx XXX xxxxx xxx xxxxxx xxxx xxxx xxxxxxxxxxxxxx xxxxxx. Xxxxxxxx xxx xxxxxxxxxxx xxxxxxx xxxxxxx xxx xxxx xx xxxxxxxxxxxx xxxxxx xxx xxxxxxxxxxxx xxxx xx xxxx xxxxxxxx.

Xx xxxxxxxxx xxx xxxxxxxxx xx xxxxx xxxxxxxxx xx XXX, xxxxxx xxxxx xxxxx:

  • Xxxxxxxx xxx xxxxxxxxx xxxx xxxx xxxxx xx xxxxx xxxxxxxx xxxxxx xx xx xxxxx xx xxxxxxx xxxxx xxx xxxxxxxxx
  • Xxxxxxxxx xxx xxxxxxx xxx xx xxxxxxxxxxx xxxxxxxx xxx xxxx xxxxxxxx
  • Xxxxx xxxxx xxxxxxxxxxx xx xxx xxxx xx xxxxx, xxx xx xxxx
  • Xxxxxxxxx xxxxx xxxxxxxxxxx xxx xxxxxx xxxxxxx xxxx xxx xxxxx xxxxxxxxx xxx xxxxxxxxxxx

x Xxxxxxx

Xx xx xxxxxxxxxxx xx xxx XXX xxxxx xxxxxxx xx xxxxxxx xxxxxx xxxx xx xxxxxxxxx xxxxxxx xxxxx. Xxxxxxxx xxx xxxx xxxxxxx xxxxxx xxx xx xxxx xxx xxx-xx-xxx xxxxxxxxxx, xxxxxxx xxxxxxxxxx XXX xxxxx xxxxxx xx xxxxxxx.

x Xxxxx

XXX xxxxx xxxxxx xxxx xx xxxxxxxxxxx xx xx xxxxxxx xxxx xxx xx xxxxxxx xx xxxxxxx xxxxxxxx (xxxx xx xxxxx, xxxxxx xx XXX xxxxxxxx), xx xxxxxx XXX xxxxxxxxx, xx xxx xxxx xxxxxxxx, xx x xxxxxx xxxxxx xxxxxxx xxx xxxx xx xxxxx xxxxxx xxxx xx xxxxxxxxx.

Xxxxx XXX xxxxx xxx xxxxxxxx xxx xxxxxx xxx xxxxxxxxxxxxxx xxxxxx xx xxxxxxxx xxxxxx xx XXX xxxxxxxxx xxxxxx x xxxxx xxxxxx xx xxxxx xx xxxxxxxx. Xxxxxx xxxxxxxxxxx xx XXX xxxxx xxx xxxx xxxxxx xxxxxxx xxxxxxx xxxxxx xxxxx xx xxxxxx xx xxxx xxxxxxxxxx xxx xxxxxxxxxxxxxx xxxx xxxxxx xx xxxxxx xxxxxxxx xxxx xx xxxxxx xxxx xx xxxxxxxxx.

Xxxxxxxxxxxx, XXX xxxxx xxxx xxxxxx xxxxx xxxxxxxxx xxxxxx. Xx xxxxxxxx x xxx xx xxxxxxxxxxx xxxx xxx xxxxxxxx xx x xxxxxxxxxx xxx xxxx, xxxxxxxxxxxxxx xxx xxxxxx xxxx xxxxx xx xxxxxxxx xxxx xxxx xxxxxx xx xxx xxxxxxxxx xxxx xxxx xxxx xx xxxxxxx xxxxxxxx xxx xxxxxxxxx, xxxxxxxxxx xxxxxx xx xxxxxxxxxxx xxxxxxxxx. Xxxx xxx xxxx xx xxxxxx xxx xxxx xx xxxxxxxxxxxx xxxxxx xx xxxx xxxxxxxx.

Xx xx xxxxxxxxxxx xxxxxxx xx xx XXx xxxxxxxx xxxxxxxx xxxxxx xx xx Xx xxxxxx, xxxxxxx xx xxxxxxxxx xxxxxxxxxxx xx xxx XXx xxxxxxxx, xx XXX xxxx xxx xx xxxxxxx xx xxxxxx xxx xxxxxxxxxxx xxxxxxxx xx xxxxxxx xxx xxxxxxxxx xxxxxxx xx Xx. Xxxx xxx xxxxxxxxxxx xxxxxxx xx xxx XXx xxxxxxxx xxxxx xx xxxxxx xxx Xx xxxxxx, xx xxx xxxxxx xxx XXX xxxx xxx xxxxxx xxx xxxxxx xxxxx xxxxxxxxx xxxxxxxxxxx xxxxxxxx xx XXX.

x Xxxxxxxx

Xxxxxxxx xx xx xxxxxxxxx xxxxxxx xx x xxxxxxxxxxxxx XXX xxxxxxxx xxx xxx xxxx xxxxxxxxxxxxx xxxxxxxx xxx xxxxxxxxx xxx xxxxxxxx xx xxxxx XXX xxxxxxxxxxxx.

Xx xx xxxxxxxx xxxx xxxxxxxx xx xxxxxxxxx xxxxxx XXX xxxxxxxx xx xxxxxx xxxx xxx xx-xx-xxxx, xxx xxxxxxx xx xxxxxxxx, xxx xxxx xxxx xxxxx xxxxx xxxx xxx xxxxxxxx xxx xxxxxxxxxx xxxxxxxxxxxx xx xx xxxxxxxxxxxx. Xxxx xxx xxxx xxxxxxxx xxx xxxx xxx xxxxxxxxxxxxxxx xx xxx xxxxxx xxxxxxxx xxx xxxxxxxxxx, xxxxxxxx xxxxxxxxxxxxxx xx xxxx xxxx xxxxxxxxx xxxxxxxx xxxxxx.

Xxxxxxxxx xxxxx XXX xxxxxxxxxxx xx xxxxxx xxxx xxx xxxxx xxxxxxxx xxx xxx xxxxxxx xxxxxxxxxxxxx. Xxxxxxxxxxxx xxxxxx XXX xxxxxxxx xx xxxxxx xxxx xxxx xxxxx xxx xxxxxxxxx xxxxxxxxxxx. Xxxxxx xxxxxx XXX xxxxx, xxxxxx, xxx xxxxx.

Xxxxxxxxxx

Xxxxxxxxxx XXX xxxxxxxx (xxxx xx xxxxx xxxxxxxx, XXX xxxxx, xxx xxxxxxxx xxxxx), xxx xxxx xxxxxx xxxxxxxxxxxx xxxxxx xxxxxxxx xx xxxxxxxxxx xxxxxxxx, xxxxxxxxxxxxxx xxx xxxx xxxx xxxxxxxxxx xxxxxx xxxx xx xxxxxxxxx xxxxxxxx xx xxxxxxxx xxxxxx xxxx.

XXX xxxxxxxx xxxxxxx xxxxx xx xxxxx xx xxxxxxxxxxxxxx XXX xxxxxxxxxxxxx, xxxxxxx xxxxxxxxxxxxxx xxxxxxx xxx xxxxxxxx xxxxxxx, xxx xx xxxxxx xxxxxxxxxx xxxx xxxxxxxx xxxx xxxxxxxxx xxx xxxxxxxxxx xxxxxxxxxxxx:

  • XXX Xxxxxxxxxxxxxxxxxx x xxxxxx xx XXX XXX xxxxx xxx xxxxxxx xxxxxx, xxxxxxxxx xxxxx xxxx xx XXX. Xxxx xxxxxx xxx xx xxxxx xxxxxxx xxxx xx XXX xxxxxxxx, xxxxx, xxxxxx, xxxxx, xxx xxxxxxxxxxx, xxx xxxxxxx xxxx xxxxxxxx.
  • XXX Xxxxxxxxxxxxxx x xxxxxxxx xxxxxxxxx xx XXX xxxxxxxxx, xxxxxxxxx XXX xxxxxxxx, xxxxx, xxxxxx, xxx xxxxx. Xx xxxx xxxxxx xxx xx xxxxx xxxxxxx xx xxxxx xxxxxxxxx xxxx xxxx xxx xxxxxxx xxxxxx xxxx xxxxxxx xxx xxxx.
  • XXX Xxxxxxxx Xxxxxxxxxxx x xxxxxxxxxxxxx xxxx xx xxxxxxxx xxxxxx xxx xxxxxxxxxx xxxxxx xxxxxx xxxx XXX xxxxxxxx. Xx xxxxxxxxxx xxxx XXX Xxxxxx xxx XxxxxXxxxx xx xxxxxxx x xxxxxxxxxxx xxxx xx xxxxxxxx xxxxxx xxx xxxxxxxx.
  • XXX XXX Xxxxxx Xxxxxxxxxxxxxxxx xxxxxxxxx xxxxxxxx xxxxxxxx xx xxxx xxxxxxxx xxxxxxxx xx xxxx xxx xxxxxxxx xxx xxxxxxxxxx xxxxxx xx xxxxx-xxxxxxx xxxxxx.

XXX Xxxxxxxx Xxx xxx XXX XXX Xxxxxx Xxxxxxxx xxxx xxxxx xx xxxx.

xx Xxxx Xxxx

Xxx xxx xx xxx XXX xxxxxxx xxxx xxxx xxx xxxxxxxx xxxxx xx xxxxxxxxxx xxxxxx xx xxxxxxx. Xxxxxxx XXX xxxxx xxxx xxx xxxxxxxxx xxxxxxxxxxx xx xxxxxxx xxxxxxxx xxxxxxx xxxxxx xx xxxxxxx xxx xxxx.

Xx xx xxxxxxxxxx xxxxxxxxx xxxx xxxxx-xxxxxx xxxxxxxxxxxxxx xx xxxxxxxx xx xxx xxxxxxx xx xxx xxxx xxxx, xxx xxxx xxxxxx xxxxx xxx xxxxxxx xx xxx xxxxxx xxxxxxx xxxxxxxxxx xxxxxx xxxxx. XXX xxxxxxxxxx xxxx xxx xxxxxxx xxxxxxxxxxx xx xxx xxxx xxxx xxx xxxxxx xx x xxxxxx xxxxxxxx xxx xxxxxx xx xxxx xx xxxxxxxxxx xx xxxx xxxxxxxxxx xxxxxxxxx, xx xxxxxxx xxxxxx xxx xxxx xx xxxxxxxxxxxx xxxxxx xx xx xxxxxxxxxxxxxx XXX xxxxxxx.


Xxxxxxx

XXX Xxxxxxxx xxx Xxxxxx Xxxxxxxxxx (XXX) xx x xxxxxxxx xxxx xxx xxxxxxxx xxxxxx xx XXX xxxxxxxxx. Xx xx xxxx xxxxxxxxx xx xxxxxx xxxx xxxxxxxxx xx xxxxxx xxxx xx xxxxxxxxxxxxxx XXX xxxxxxxxxxx xxxxxxx xxxxxx xxx xxxxxxxxx xxxx xxxxxxxxxxxx xxxxxx xx xxxx xxxxxxxx.

Xx xxxxxxxxxxxx xxxxx xxxx xxxxxxxxx, xxx xxx xxxxxxx xxx xxxxxxxxxxxxxx, xxxxxxxxxxxx, xxx xxxxxxxx xx xxxx XXX xxxxxxxxxxx. Xx xx xxxxxxx xx xxxx xx-xx-xxxx xxxx xxx xxxxxx xxxxxxxx xxxx xxxxxxxxx xxx xx xxxxxxxxx xxxxx xxx xxxxxx xxxxxxxxxxx xx xxxxxx xxxx xxxx XXX xxxxxxxxxxx xxxxxxx xxxxxx. Xxxxxxxx, xxxxxxxx xx x xxxxxx xxxxxxxxxxxxxx, xxx xx xxxxxxxxx xxxxx xxxx xxxxxxxxx, xxx xxx xxxx xxxx xxxx xxxxxxxxxxxxxx xxxxxxx xxxxxx xxxx.
Richard Fortune
Written By

Richard Fortune

A seasoned Lead Architect delivering complex distributed cloud solutions with four decades coding experience.