Root credentials - To create a free tier account, AWS needs an email id. This account holder becomes the root account user for the Management Console. Root account has access to all the features including billing and accounting details. It is advisable by AWS to create individual user accounts via IAM to access AWS console. Root account user only needs the email id and passed to access the account via AWS console.
AWS Secret Key pair - A secret key pair is used to access AWS via SSH or external CLI tools.
Individual accounts - Root user can create individual user accounts and grant them access to resources on the AWS.
Overview
User - Users can be created via IAM feature in AWS Management Console. A user is created with a username, accountant, passed and AWS secret key. Users can log into AWS with their username, accountant and passed. The secret access key is used for programming via SSH or using CLI.
Group - Users can be organized into groups and each group can have one or more policies
Role - A user or an AWS service (such as EC2) can use a role to access resources or perform actions.
Policies
Technically a policy is a JSON document with an action (allowed), resource (on which action is allowed) and effect (allow or deny). The policy is auto created and can be assigned to a user or a group.
No comments:
Post a Comment