Advanced roles and groups management using IAM


1345 students completed the lab in ~45m

Total available time: 1h:0m

760+ students rated this lab!

Advanced roles and groups management using IAM

AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources for your users. You can specify permission to a single user or you can use groups to specify permissions for a collection of users, which can make those permissions easier to manage for those users. Furthermore you can use a Role for grant authorization to aws resources without any credentials (password or access keys) directly associated with it. In this laboratory we allocate time to learn the recommended AWS security best practices.

You'll build and learn following these steps:

Log In to the Amazon Web Service Console

Your first step to start the laboratory experience

Create IAM User

How to create an IAM user with a permission policy

Create IAM Group

How to create an IAM user group

Add IAM User to Group

How to bind an IAM user to a specific group

Create customer managed policy with policy generator

You can create customer managed policies to define sets of permissions to attach to principal entities (users, groups, and roles) in your AWS account.

Attach policy to Users

You can attach a managed policy to a principal entity (a user, group, or role) to apply the permissions in the policy to the principal entity.


Create IAM Role

You can use IAM roles to delegate access to your AWS resources.

Launch EC2 Instances with IAM Profile

Launch an new EC2 instance passing a IAM profile

Connect to a remote shell using an SSH connection

How to use a remote Linux shell from Windows, Linux or Mac

Test IAM Profile from EC2 Linux instance

Test the IAM Profile configuration on EC2 Instance