iam

Home » iam

How AWS IAM Handles Conflicting IAM Policies

2023-05-03T03:39:25+00:00

Overview When a user attempts an action in AWS, such as launching an EC2 instance or listing S3 buckets, AWS evaluates all involved IAM policies to determine whether to grant the request. Since IAM policies can be associated with various types of identities, the hierarchy of these identities influences the final permissions for a user. AWS IAM Policy Evaluation Flow Let’s break down the process of how AWS evaluates a request using the simplified version of the AWS flow chart below: 1. Default Deny AWS denies a request by default. For example, if your IAM user has no policies attached [...]

How AWS IAM Handles Conflicting IAM Policies2023-05-03T03:39:25+00:00

Understanding the IAM:PassRole Permission

2023-08-24T02:44:43+00:00

Introduction Many AWS services often require the use of an IAM role to execute actions on your behalf. For example, when you create a Lambda function, you assign an execution role to it. AWS can generate one for you automatically, and then you define the permissions you want it to have after. Most of the time, that's the case. However, there are instances when you might choose to associate an existing IAM role. In practice, we often concentrate on which permissions a user is allowed to perform and which are off-limits. But what's often overlooked are the IAM roles a [...]

Understanding the IAM:PassRole Permission2023-08-24T02:44:43+00:00

AWS Identity and Access Management ( IAM )

2024-01-18T07:42:49+00:00

Bookmarks Features Infrastructure Elements Users Policies AWS Security Token Service (STS) Assume Role Options STS Get Tokens IAM Access Analyzer IAM Identity Center Best Practices AWS IAM-related Cheat Sheets Validate Your Knowledge AWS Identity and Access Management Cheat Sheet Control who is authenticated (signed in) and authorized (has permissions) to use resources. AWS account root user is a single sign-in identity that has complete access to all AWS services and resources in the account. Features You can grant other people permission to administer and use [...]

AWS Identity and Access Management ( IAM )2024-01-18T07:42:49+00:00

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!