If you have to create Multiple IAM users with Complicated(Multiple Permissions) Policies. It takes huge time, instead of adding individual policies,
- Create a group – add policies to it
- Add Iam Users to Group
Benefits :
- Saves your Times
- You can group the users, You can control access to them
Example : Dev Group, Testing Group, Database Group
IAM User Console Dashboard : (GUI MID – 2022 varies with respect to time)
+ Go to Go to IAM User Groups : (AWS Console > Services > Security, Identity, & Compliance > IAM > Access Management > User Groups)
Steps to Create AWS IAM Group : (GUI MID – 2022 varies with respect to time)
1. Click on Create Group to Start Creating Group
2. Create user group :
+ Name of group : Add name to IAM Group , Example : I Given Database-Team
+ Add users to the group : Iam Adding 3 IAM User(Created Earlier)
+ Attach permissions policies : I have added AmazonRDSFullAccess Policy
If you have Required Multiple Policies to give fine grained access then select policies and Select the button At the bottom Create group .
3. AWS User Group Created :
Here you can see the Database-Team User group, Click on the Group
4. IAM Group Details : Here you can see the Details of the IAM Group, by clicking on it.
- Users : List the Users in the IAM User Group
- ARN : Amazon Resource Names (ARNs) uniquely identifies AWS resources
- Permissions : We can see the List of Permissions assigned to group
- Access Advisor : Shows the list of services accessed in that group of users
Users & ARN :
Access Adviser :
5. Check the IAM User Permissions (Earlier Added : AmazonRDSFullAccess )
Here you can see RDS opened without showing an error.
6. Here I again tried to open another AWS Service S3(Storage Service). But here I have not seen any option to create Buckets(files).
