Advanced Roles and Groups Management Using IAM

The hands-on lab is part of these learning paths

Solutions Architect – Professional Certification Preparation for AWS
course-steps 45 certification 5 lab-steps 19 quiz-steps 5 description 2
SysOps Administrator – Associate Certification Preparation for AWS
course-steps 34 certification 4 lab-steps 30 quiz-steps 4 description 5
Certified Developer – Associate Certification Preparation for AWS
course-steps 27 certification 5 lab-steps 22 description 2
Security - Specialty Certification Preparation for AWS
course-steps 22 certification 2 lab-steps 12 quiz-steps 5
AWS Security Services
course-steps 9 certification 2 lab-steps 4 quiz-steps 3
AWS Access & Key Management Security
course-steps 6 certification 2 lab-steps 2 quiz-steps 2
more_horiz See 5 more

Lab Steps

Logging in to the Amazon Web Services Console
Create IAM Group
Create IAM User
Create customer managed policy with policy generator
Attach policy to Users
Create an IAM Role
Launch EC2 Instances with IAM Profile
Connecting to a Remote Shell Using an SSH Connection
Test IAM Profile from EC2 Linux instance
Validate Advanced Roles and Groups Management Using IAM

Ready for the real environment experience?

Duration1h 15m


Advanced roles and groups management using IAM

AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources for your users. You can specify permissions to a single user or you can use groups to specify permissions for a collection of users, which can make those permissions easier to manage for those users. Furthermore, you can use a Role to grant authorization to AWS resources without any credentials (password or access keys) directly associated with it. In this Lab, we allocate time to learn the recommended AWS security best practices.


February 12th, 2019 - Insert a warning for avoiding the user checking the wrong checkbox

December 5th, 2018 - Added a validation Lab Step to check the work you perform in the Lab

About the Author


Paolo Latella is an AWS Community Hero, Cloud Solutions Architect and AWS Technical Trainer at XPeppers, an enterprise focused on Cloud technologies and DevOps methodologies. Paolo has more than 15 years of experience in IT and has worked on AWS technologies since 2008. Before joining XPeppers he was a Solution Architect Team Leader at Interact, an enterprise leader in Digital Media for the Cloud. There he followed the first Hybrid Cloud project for the Italian Public Sector. Paolo hosts regular meetings as the Co-Founder of AWS User Group Italia and AWS User Group Ticino. He can also be found participating at various technology conferences in Italy.