FacebookTwitterYouTubeLinkedInSlackSlack

amazon iam

Home » amazon iam

How AWS IAM Handles Conflicting IAM Policies

2023-05-03T03:39:25+00:00

Overview When a user attempts an action in AWS, such as launching an EC2 instance or listing S3 buckets, AWS evaluates all involved IAM policies to determine whether to grant the request. Since IAM policies can be associated with various types of identities, the hierarchy of these identities influences the final permissions for a user. AWS IAM Policy Evaluation Flow Let’s break down the process of how AWS evaluates a request using the simplified version of the AWS flow chart below: 1. Default Deny AWS denies a request by default. For example, if your IAM user has no policies attached [...]

How AWS IAM Handles Conflicting IAM Policies2023-05-03T03:39:25+00:00

Understanding the IAM:PassRole Permission

2023-08-24T02:44:43+00:00

Introduction Many AWS services often require the use of an IAM role to execute actions on your behalf. For example, when you create a Lambda function, you assign an execution role to it. AWS can generate one for you automatically, and then you define the permissions you want it to have after. Most of the time, that's the case. However, there are instances when you might choose to associate an existing IAM role. In practice, we often concentrate on which permissions a user is allowed to perform and which are off-limits. But what's often overlooked are the IAM roles a [...]

Understanding the IAM:PassRole Permission2023-08-24T02:44:43+00:00

Building Dynamic Start and Stop Scheduler Functions for Non-Distributed Applications Under Auto-Scaling Group

2023-05-26T04:50:32+00:00

In AWS, it’s of utmost importance to consider the cost in every aspect. In fact, cost optimization is one of the 6 pillars of a well-architected framework, therefore, it must be included in every step in building solutions in AWS. There are infinite ways to reduce bills but one of the most popular ones for EC2 instances is to start or stop them, especially if they don't need to run 24/7. But constantly doing this manually can be quite tedious and can significantly increase the operational load. It involves human intervention and hence, piling up its risks for human errors. [...]

Building Dynamic Start and Stop Scheduler Functions for Non-Distributed Applications Under Auto-Scaling Group2023-05-26T04:50:32+00:00

AWS Identity and Access Management ( IAM )

2024-01-18T07:42:49+00:00

Bookmarks Features Infrastructure Elements Users Policies AWS Security Token Service (STS) Assume Role Options STS Get Tokens IAM Access Analyzer IAM Identity Center Best Practices AWS IAM-related Cheat Sheets Validate Your Knowledge AWS Identity and Access Management Cheat Sheet Control who is authenticated (signed in) and authorized (has permissions) to use resources. AWS account root user is a single sign-in identity that has complete access to all AWS services and resources in the account. Features You can grant other people permission to administer and use [...]

AWS Identity and Access Management ( IAM )2024-01-18T07:42:49+00:00

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!