Start course

This course explains how to manage your user identities when using the AWS Identity and Access Management Service, commonly referred to as IAM. We'll be covering users in-depth, so if you're new to IAM and are looking to secure your resources through identity-based management then this is the right course for you!

Learning Objectives

  • Learn the essentials of users within IAM
  • Understand how to create, manage, and configure users using security best practices

Intended Audience

  • Administrators
  • Security Engineers
  • Security Architects
  • Anyone looking to enhance their knowledge of the IAM service in preparation for an AWS Certification


To get the most out of this course, you should already have a basic understanding of AWS IAM and what the service is used for. It would also be advantageous if you had some basic hands-on experience of AWS and some of its core services, but it is not essential.


This course covered all things related to IAM users, from the user dashboard, to the creation and management of users. AWS IAM is one of those services that you need to become very familiar with as it's a fundamental part of your security process and ties in with any security governance controls that you might need to adhere to, whether they are either internal or external. Having a solid grasp of how to manage your users in IAM will help prevent you from having unnecessary security risks and exposures within your environment.

IAM user management is key to maintaining secure access controls at both the programmatic and console level. You should ensure you are regularly reviewing the following. The groups that are associated with your users to ensure those user still need access to those groups. You should monitor the Last Activity to identify any users who could potentially be removed and deleted from IAM. Implement multi-factor authentication, especially for any users who have an elevated level of permission.

Rotate and change passwords regularly. Remove console access for those users who have not signed into it for an extended period of time. Rotate access keys on a regular basis. And remove programmatic access for users who have not used their Access Key for an extended period of time.

That now brings me to the end of this lecture and to the end of this course, and so you should now have a greater understanding of IAM users and how to create, manage and review them to maintain a secure environment. Feedback on our courses here at Cloud Academy is valuable to both us as trainers and any students looking to take the same course in the future. If you have any feedback, positive or negative, it would be greatly appreciated if you can contact Thank you for your time and good luck with your continued learning of cloud computing. Thank you.

About the Author
Learning Paths

Stuart has been working within the IT industry for two decades covering a huge range of topic areas and technologies, from data center and network infrastructure design, to cloud architecture and implementation.

To date, Stuart has created 150+ courses relating to Cloud reaching over 180,000 students, mostly within the AWS category and with a heavy focus on security and compliance.

Stuart is a member of the AWS Community Builders Program for his contributions towards AWS.

He is AWS certified and accredited in addition to being a published author covering topics across the AWS landscape.

In January 2016 Stuart was awarded ‘Expert of the Year Award 2015’ from Experts Exchange for his knowledge share within cloud services to the community.

Stuart enjoys writing about cloud technologies and you will find many of his articles within our blog pages.