Identity & Access Management (IAM)
Types:
- AWS Identity and Access Management
- Cloud IAM (GCP)
- Single sign-on: Keycloak
- SailPoint
- CyberArk
- IAM Access Analyzer (Dec 2019)
Examples policies
aws:RequestedRegion
(April 2018) [1]iam:ChangePassword
arn:aws:iam::aws:policy/ReadOnlyAccess
Related terms
- Acceptto, Perimeter 81 and TokenEx
- Deepnet Security
- OpenStack Identity - Keystone
- Access Management (AM) Magic Quadrant
- Certified Identity and Access Manager (CIAM)
- Amazon RDS IAM Authentication
- Terraform resource: aws_iam_role
Activities
- Read Security best practices in IAM https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html
- IAM FAQ
See also
aws iam
[create-user
,create-group, get-user
,list-users
|list-policies
|list-attached-user-policies
|attach-user-policy
|list-attached-user-policies
|list-roles
|get-account-summary
|put-group-policy | put-role-policy | put-user-policy
|create-login-profile
|aws iam delete-virtual-mfa-device
|aws iam list-virtual-mfa-devices
|aws iam create-saml-provider
|aws iam list-account-aliases
|aws iam create-role | aws iam change-password| enable-mfa-device | list-instance-profiles
- IAM: AWS IAM Identity Center, AWS Identity and Access Management, Google Cloud IAM, Azure IAM, SailPoint, CyberArk, CIAM, ForgeRock,
iam:ChangePassword
,aws iam
,AdministratorAccess
, Context keys, IAM Access Analyzer, AWS policy, AWS managed policies,IAMUserChangePassword
, AWS Roles, List of AWS policies, Resource-based policy,aws-iam-authenticator
, IRSA, RDS Authentication,AccessDenied
, AWS Authentication, AWS IAM external access analyzer - Single sign-on: Okta, Red Hat Single Sign-On, Keycloak, SAML, ADFS, Access Management Magic Quadrant, Oracle Access Manager, AWS SSO, Azure Active Directory, Federated authentication, Google Workspace: set up SSO via SAML for Amazon Web Services, Login with, Microsoft account, Shibboleth
Advertising: