How to manage and secure your environment using AWS Identity & Access Management (IAM)

AVG Duration5h


The AWS Identity and Access Management service, commonly known as IAM is one of the first AWS security services that you will come across when working with AWS. It’s the central service for administering user accounts allowing them to gain access to your AWS resources. From user creation, password policies, access policies, roles, groups, and more, understanding AWS IAM is essential if you are looking to enforce stringent security controls within your AWS accounts.  

In this learning path I will be looking at IAM from many different perspectives and cover the following learning objectives via our courses and hands-on labs:

Learning Objectives

  • Understand what is meant identity and access management and the difference between authentication, authorization, and access control
  • Learn the components of IAM as well as its reporting features
  • Learn the essentials of users within IAM
  • Understand how to create, manage, and configure users using security best practices
  • Learn how to manage multiple users with IAM User Groups
  • Gain a foundational understanding of IAM roles
  • Understand how to use AWS service roles to access AWS resources on your behalf
  • Learn how to use IAM user roles to grant temporary access to users
  • Understand how to use roles for federated access
  • Understand the different types of IAM policies you can expect to see when working within IAM
  • Learn how to implement policies effectively to build secure and robust access controls for your users
  • Learn how to read IAM policies to understand the permissions they are granting and restricting
  • Learn how policy evaluation logic operates
  • Understand the core principles of cross-account access using IAM

Intended Audience

This learning path has been designed for those who are responsible for securing access to AWS resources. It would also be advantageous to anyone looking to take an AWS certification.


You should have a basic understanding of AWS core services 


Your certificate for this learning path

Training Content

Course - Beginner - 3m
LP Introduction - How to manage and secure your environment using AWS IAM
This course introduces the learning path, including what it will cover, its overall learning objectives, and what to expect.
Course - Intermediate - 17m
How AWS IAM is Used to Securely Manage Access
This course provides an overview of the AWS Identity & Access Management Service, commonly referred to as IAM, along with its core features.
Hands-on Lab - Beginner - 1h
Introduction to IAM
Learn how to create and manage IAM users, groups and policies to securely control access to AWS services and resources.
Course - Intermediate - 25m
Managing User Identities with Long Term Credentials in AWS IAM
This course explains how to manage your user identities when using the AWS Identity and Access Management Service, commonly referred to as IAM.
Course - Intermediate - 35m
Managing Access using IAM User Groups & Roles
This course explores some of the security best practices when using user groups and roles and how these can help you secure access to your resources more effectively.
Hands-on Lab - Intermediate - 1h 15m
Advanced Roles and Groups Management Using IAM
Learn how to manage our organization using IAM Users and Groups and IAM Roles 
Course - Intermediate - 37m
Using IAM Policies to Define and Manage Permissions
This course covers how IAM Policies can be used to allow you to grant and restrict access to your resources within your AWS account, as well as the different types of policies and how to interpret a policy.
Course - Intermediate - 12m
Implementing Cross-Account Access Using IAM
This course covers how to implement cross-account access using AWS IAM.
Hands-on Lab - Beginner - 1h
Controlling Amazon DynamoDB Access Using AWS IAM Policies
Learn how to control access to items in an Amazon DynamoDB table using AWS IAM policies in this hands-on lab.
Hands-on Lab - Beginner - 1h 25m
Associating AWS IAM Roles with Amazon EKS Service Accounts
Learn how to associate an IAM role with Kubernetes Service Account to achieve least privilege and credential isolation in this hands-on lab.
Hands-on Lab Challenge - Beginner - 1h
AWS Identity and Access Management Permissions Challenge
Put your AWS Identity and Access Management skills to the test in this hands-on challenge lab as you are tasked with configuring cross account access.
About the Author
Learning paths175

Stuart has been working within the IT industry for two decades covering a huge range of topic areas and technologies, from data center and network infrastructure design, to cloud architecture and implementation.

To date, Stuart has created 150+ courses relating to Cloud reaching over 180,000 students, mostly within the AWS category and with a heavy focus on security and compliance.

Stuart is a member of the AWS Community Builders Program for his contributions towards AWS.

He is AWS certified and accredited in addition to being a published author covering topics across the AWS landscape.

In January 2016 Stuart was awarded ‘Expert of the Year Award 2015’ from Experts Exchange for his knowledge share within cloud services to the community.

Stuart enjoys writing about cloud technologies and you will find many of his articles within our blog pages.