Difference between revisions of "Aws iam"
Jump to navigation
Jump to search
| (65 intermediate revisions by 5 users not shown) | |||
| Line 1: | Line 1: | ||
| + | {{lowercase}} | ||
| + | https://awscli.amazonaws.com/v2/documentation/api/latest/reference/iam/index.html | ||
| + | __NOTOC__ | ||
| + | === Users === | ||
| + | * <code>[[aws iam get-user]]</code> | ||
| + | * <code>[[aws iam list-users]]</code> | ||
| + | * <code>[[aws iam create-user]]</code> | ||
| + | * <code>[[aws iam create-group]]</code> | ||
| + | * <code>[[aws iam add-user-to-group]]</code> | ||
| + | |||
| + | * <code>[[aws iam create-access-key]]</code> | ||
| + | * <code>[[aws iam create-login-profile]]</code> | ||
| + | * <code>[[aws iam change-password]]</code> | ||
| + | |||
| + | * <code>[[aws iam get-account-summary]]</code> | ||
| + | |||
| + | === [[aws iam policies|Policy]] === | ||
| + | {{aws iam policy TOC}} | ||
| + | |||
| + | === [[AWS roles|Roles]] === | ||
| + | {{aws iam role TOC}} | ||
| − | + | === Alias === | |
| + | * <code>[[aws iam list-account-aliases]]</code> | ||
| + | * <code>[[aws iam create-account-alias]]</code> | ||
| + | * <code>[[aws iam delete-account-alias]]</code> | ||
| − | * <code>[[aws iam | + | === [[SAML]] === |
| + | * <code>[[aws iam create-saml-provider]]</code> | ||
| + | * <code>[[aws iam list-saml-providers]]</code> | ||
| − | + | === [[Keys]] === | |
| − | |||
* <code>[[aws iam create-access-key]]</code> | * <code>[[aws iam create-access-key]]</code> | ||
| + | * <code>[[aws iam list-access-keys]]</code> | ||
| + | |||
| + | === [[AWS MFA|MFA]] === | ||
| + | {{aws iam mfa TOC}} | ||
| + | |||
| + | === [[AWS STS|STS]] === | ||
| + | * <code>[[aws iam set-security-token-service-preferences]]</code> | ||
| + | |||
| + | === [[Open ID]] === | ||
| + | [[aws iam list-open-id-connect-providers]] | ||
| + | |||
| + | |||
| + | == All commands == | ||
| − | + | [[add-client-id-to-open-id-connect-provider]] | |
| + | add-role-to-instance-profile | ||
| + | add-user-to-group | ||
| + | [[attach-group-policy]] | ||
| + | [[attach-role-policy]] | ||
| + | [[attach-user-policy]] | ||
| + | change-password | ||
| + | create-access-key | ||
| + | create-account-alias | ||
| + | create-group | ||
| + | create-instance-profile | ||
| + | create-login-profile | ||
| + | create-open-id-connect-provider | ||
| + | create-policy | ||
| + | create-policy-version | ||
| + | create-role | ||
| + | create-saml-provider | ||
| + | create-service-linked-role | ||
| + | create-service-specific-credential | ||
| + | create-user | ||
| + | create-virtual-mfa-device | ||
| + | deactivate-mfa-device | ||
| + | delete-access-key | ||
| + | delete-account-alias | ||
| + | delete-account-password-policy | ||
| + | delete-group | ||
| + | delete-group-policy | ||
| + | delete-instance-profile | ||
| + | delete-login-profile | ||
| + | delete-open-id-connect-provider | ||
| + | delete-policy | ||
| + | delete-policy-version | ||
| + | delete-role | ||
| + | delete-role-permissions-boundary | ||
| + | delete-role-policy | ||
| + | delete-saml-provider | ||
| + | delete-server-certificate | ||
| + | delete-service-linked-role | ||
| + | delete-service-specific-credential | ||
| + | delete-signing-certificate | ||
| + | delete-ssh-public-key | ||
| + | delete-user | ||
| + | delete-user-permissions-boundary | ||
| + | delete-user-policy | ||
| + | delete-virtual-mfa-device | ||
| + | detach-group-policy | ||
| + | detach-role-policy | ||
| + | detach-user-policy | ||
| + | [[enable-mfa-device]] | ||
| + | generate-credential-report | ||
| + | generate-organizations-access-report | ||
| + | generate-service-last-accessed-details | ||
| + | [[get-access-key-last-used]] | ||
| + | <pre> | ||
| + | get-account-authorization-details | ||
| + | get-account-password-policy | ||
| + | get-account-summary | ||
| + | get-context-keys-for-custom-policy | ||
| + | get-context-keys-for-principal-policy | ||
| + | get-credential-report | ||
| + | get-group | ||
| + | get-group-policy | ||
| + | get-instance-profile | ||
| + | get-login-profile | ||
| + | get-open-id-connect-provider | ||
| + | get-organizations-access-report | ||
| + | get-policy | ||
| + | get-policy-version | ||
| + | get-role | ||
| + | get-role-policy | ||
| + | get-saml-provider | ||
| + | get-server-certificate | ||
| + | get-service-last-accessed-details | ||
| + | get-service-last-accessed-details-with-entities | ||
| + | get-service-linked-role-deletion-status | ||
| + | get-ssh-public-key | ||
| + | get-user | ||
| + | get-user-policy | ||
| + | list-access-keys | ||
| + | list-account-aliases | ||
| + | list-attached-group-policies | ||
| + | list-attached-role-policies | ||
| + | list-attached-user-policies | ||
| + | list-entities-for-policy | ||
| + | list-group-policies | ||
| + | list-groups | ||
| + | list-groups-for-user | ||
| + | list-instance-profile-tags | ||
| + | list-instance-profiles | ||
| + | list-instance-profiles-for-role | ||
| + | list-mfa-device-tags | ||
| + | list-mfa-devices | ||
| + | list-open-id-connect-provider-tags | ||
| + | list-open-id-connect-providers | ||
| + | list-policies | ||
| + | list-policies-granting-service-access | ||
| + | list-policy-tags | ||
| + | list-policy-versions | ||
| + | list-role-policies | ||
| + | list-role-tags | ||
| + | list-roles | ||
| + | list-saml-provider-tags | ||
| + | list-saml-providers | ||
| + | list-server-certificate-tags | ||
| + | list-server-certificates | ||
| + | list-service-specific-credentials | ||
| + | list-signing-certificates | ||
| + | list-ssh-public-keys | ||
| + | list-user-policies | ||
| + | list-user-tags | ||
| + | list-users | ||
| + | list-virtual-mfa-devices | ||
| + | put-group-policy | ||
| + | put-role-permissions-boundary | ||
| + | put-role-policy | ||
| + | put-user-permissions-boundary | ||
| + | put-user-policy | ||
| + | remove-client-id-from-open-id-connect-provider | ||
| + | remove-role-from-instance-profile | ||
| + | remove-user-from-group | ||
| + | reset-service-specific-credential | ||
| + | resync-mfa-device | ||
| + | set-default-policy-version | ||
| + | set-security-token-service-preferences | ||
| + | simulate-custom-policy | ||
| + | simulate-principal-policy | ||
| + | tag-instance-profile | ||
| + | tag-mfa-device | ||
| + | tag-open-id-connect-provider | ||
| + | tag-policy | ||
| + | tag-role | ||
| + | tag-saml-provider | ||
| + | tag-server-certificate | ||
| + | tag-user | ||
| + | untag-instance-profile | ||
| + | untag-mfa-device | ||
| + | untag-open-id-connect-provider | ||
| + | untag-policy | ||
| + | untag-role | ||
| + | untag-saml-provider | ||
| + | untag-server-certificate | ||
| + | untag-user | ||
| + | update-access-key | ||
| + | update-account-password-policy | ||
| + | update-assume-role-policy | ||
| + | update-group | ||
| + | update-login-profile | ||
| + | update-open-id-connect-provider-thumbprint | ||
| + | update-role | ||
| + | update-role-description | ||
| + | update-saml-provider | ||
| + | update-server-certificate | ||
| + | update-service-specific-credential | ||
| + | update-signing-certificate | ||
| + | update-ssh-public-key | ||
| + | update-user | ||
| + | upload-server-certificate | ||
| + | upload-signing-certificate | ||
| + | upload-ssh-public-key | ||
| + | wait | ||
| + | </pre> | ||
| + | == Activities == | ||
| + | * Create and [[aws account alias]] from the [[AWS IAM Dashboard]] | ||
| − | * <code>[[aws | + | == Related terms == |
| − | * <code>[[ | + | * <code>[[aws sts]]</code> |
| − | * <code>[[ | + | * <code>[[AWS::IAM]]</code> |
| + | * <code>[[gcloud iam]]</code> | ||
| + | * <code>[[oci iam]]</code> | ||
== See also == | == See also == | ||
| + | * {{aws iam saml}} | ||
* {{aws iam}} | * {{aws iam}} | ||
* {{IAM}} | * {{IAM}} | ||
| − | |||
[[Category:AWS]] | [[Category:AWS]] | ||
Latest revision as of 13:23, 20 August 2024
https://awscli.amazonaws.com/v2/documentation/api/latest/reference/iam/index.html
Users[edit]
aws iam get-useraws iam list-usersaws iam create-useraws iam create-groupaws iam add-user-to-group
Policy[edit]
aws iam create-policyaws iam list-policiesaws iam list-attached-user-policies --user-nameaws iam list-group-policiesaws iam list-role-policiesaws iam put-group-policyaws iam put-role-policyaws iam put-user-policyaws iam attach-role-policyaws iam attach-group-policy
Roles[edit]
aws iam list-rolesaws iam create-roleaws iam put-role-policyaws iam get-roleaws iam create-service-linked-roleaws iam update-role
Alias[edit]
SAML[edit]
Keys[edit]
MFA[edit]
aws iam create-virtual-mfa-deviceaws iam enable-mfa-deviceaws iam list-mfa-devicesaws iam list-virtual-mfa-devicesaws iam list-mfa-device-tagsaws iam resync-mfa-deviceaws iam tag-mfa-deviceaws iam untag-mfa-deviceaws iam deactivate-mfa-deviceaws iam delete-virtual-mfa-device
STS[edit]
Open ID[edit]
aws iam list-open-id-connect-providers
All commands[edit]
add-client-id-to-open-id-connect-provider add-role-to-instance-profile add-user-to-group attach-group-policy attach-role-policy attach-user-policy change-password create-access-key create-account-alias create-group create-instance-profile create-login-profile create-open-id-connect-provider create-policy create-policy-version create-role create-saml-provider create-service-linked-role create-service-specific-credential create-user create-virtual-mfa-device deactivate-mfa-device delete-access-key delete-account-alias delete-account-password-policy delete-group delete-group-policy delete-instance-profile delete-login-profile delete-open-id-connect-provider delete-policy delete-policy-version delete-role delete-role-permissions-boundary delete-role-policy delete-saml-provider delete-server-certificate delete-service-linked-role delete-service-specific-credential delete-signing-certificate delete-ssh-public-key delete-user delete-user-permissions-boundary delete-user-policy delete-virtual-mfa-device detach-group-policy detach-role-policy detach-user-policy enable-mfa-device generate-credential-report generate-organizations-access-report generate-service-last-accessed-details
get-account-authorization-details get-account-password-policy get-account-summary get-context-keys-for-custom-policy get-context-keys-for-principal-policy get-credential-report get-group get-group-policy get-instance-profile get-login-profile get-open-id-connect-provider get-organizations-access-report get-policy get-policy-version get-role get-role-policy get-saml-provider get-server-certificate get-service-last-accessed-details get-service-last-accessed-details-with-entities get-service-linked-role-deletion-status get-ssh-public-key get-user get-user-policy list-access-keys list-account-aliases list-attached-group-policies list-attached-role-policies list-attached-user-policies list-entities-for-policy list-group-policies list-groups list-groups-for-user list-instance-profile-tags list-instance-profiles list-instance-profiles-for-role list-mfa-device-tags list-mfa-devices list-open-id-connect-provider-tags list-open-id-connect-providers list-policies list-policies-granting-service-access list-policy-tags list-policy-versions list-role-policies list-role-tags list-roles list-saml-provider-tags list-saml-providers list-server-certificate-tags list-server-certificates list-service-specific-credentials list-signing-certificates list-ssh-public-keys list-user-policies list-user-tags list-users list-virtual-mfa-devices put-group-policy put-role-permissions-boundary put-role-policy put-user-permissions-boundary put-user-policy remove-client-id-from-open-id-connect-provider remove-role-from-instance-profile remove-user-from-group reset-service-specific-credential resync-mfa-device set-default-policy-version set-security-token-service-preferences simulate-custom-policy simulate-principal-policy tag-instance-profile tag-mfa-device tag-open-id-connect-provider tag-policy tag-role tag-saml-provider tag-server-certificate tag-user untag-instance-profile untag-mfa-device untag-open-id-connect-provider untag-policy untag-role untag-saml-provider untag-server-certificate untag-user update-access-key update-account-password-policy update-assume-role-policy update-group update-login-profile update-open-id-connect-provider-thumbprint update-role update-role-description update-saml-provider update-server-certificate update-service-specific-credential update-signing-certificate update-ssh-public-key update-user upload-server-certificate upload-signing-certificate upload-ssh-public-key wait
Activities[edit]
- Create and aws account alias from the AWS IAM Dashboard
Related terms[edit]
See also[edit]
aws iam,create-saml-provider,list-saml-providersaws iam[create-user,create-group, get-user,list-users|list-policies|list-attached-user-policies|attach-user-policy|list-attached-user-policies|list-roles|get-account-summary|put-group-policy | put-role-policy | put-user-policy|create-login-profile|aws iam delete-virtual-mfa-device|aws iam list-virtual-mfa-devices|aws iam create-saml-provider|aws iam list-account-aliases|aws iam create-role | aws iam change-password| enable-mfa-device | list-instance-profiles- IAM: AWS IAM Identity Center, AWS Identity and Access Management, Google Cloud IAM, Azure IAM, SailPoint, CyberArk, CIAM, ForgeRock,
iam:ChangePassword,aws iam,AdministratorAccess, Context keys, IAM Access Analyzer, AWS policy, AWS managed policies,IAMUserChangePassword, AWS Roles, List of AWS policies, Resource-based policy,aws-iam-authenticator, IRSA, RDS Authentication,AccessDenied, AWS Authentication, AWS IAM external access analyzer
Advertising:
