Sunday, September 22, 2019

4. IAM (User, UserGroup, Policy)

4. IAM (User, UserGroup, Policy)


##################################################################


USER:
-------

Create User "iamTest" -> Give Read Only policy on all AWS Resource(PolicyName - ReadOnlyResource)
   Go to S3 -> Try to delete one of the object -> Access denied
   Come back to user - "iamTest" -> create inline policy (Either wizard/script) -> Delete Policy on All(*)/particular ARN Resource
   Go to S3 -> Try to delete -> You can delete

USER GROUP:
----------

Create UserGroup "group1" ->
   Add user "iamTest" to "group1"
   Give Admin Policy to "myGroup" (policyName - AdministratorAccess)
   Go to S3 -> Try to Create new bucket -> you can create

POLICY:
-------

Create Policy - "mypolicy"
  - Same policy if we want to give it to multiple user then create new policy
  - If its only to particular user - then we can give inline policy

  -> Select AWS Service (eg: EC2),
  -> Select Action (eg: Start/stop),
  -> select Amazon resource (*/arn-resource)



####################################################################

Step by Step : https://www.youtube.com/watch?v=DXNS-EP9sXM































Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)