IAM Best Pratices in AWS

Posted byAryan NavaPosted inAWS

IAM Best Pratices in AWS

IAM Management Console

– Lock away your AWS account root access key

Delete your AWS root account access keys, because they provide unrestricted access to your AWS resources. Instead, use IAM user access keys or temporary security credentials

– Activate MFA on your root account

Activate multi-factor authentication (MFA) on your AWS root account to add another layer of protection to help keep your account secure
– Create individual IAM users

Create IAM users and give them only the permissions they need. Do not use your AWS root account for day-to-day interaction with AWS, because the root account provides unrestricted access to your AWS resources

– Use groups to assign permissions

Use IAM groups to assign permissions to your IAM users to simplify managing and auditing permissions in your account.

– Apply an IAM password policy

Use a password policy to require your IAM users to create strong passwords and to rotate their passwords regularly

Published by Aryan Nava

Founder of "BlockchainMind", CTO for two Blockchain startup during 2018, Cloud/DevOps Consultant and Blockchain Trainer

Leave a Reply

Please log in using one of these methods to post your comment:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: