AWS Users, Groups & Policies

Learn how to manage IAM identities and define permissions using JSON policies.

iam-policy.json

{

"Version": "2012-10-17",

"Statement": [{

"Effect": "Allow",

"Action": "s3:GetObject"

}]

}

iam-policy.json

1 / 10

👤

Tutor:IAM Users are identities in AWS that represent people or applications. Each user has a unique name and can have credentials (access keys, passwords) to access AWS services. Users are the fundamental building blocks of IAM.

⭐ 0 EXP

IAM Mastery

Unlock nodes by learning new IAM concepts.

Concept 1: IAM Users

IAM Users are identities in AWS that represent people or applications. Each user has a unique name and can have credentials (access keys, passwords) to access AWS services. Users are the fundamental building blocks of IAM.

System Check

What are IAM Users?

Only AWS servicesIdentities in AWS that represent people or applicationsOnly groupsOnly policies

Community Holo-Net

Share Your IAM Configuration

Configured IAM users, groups, or policies? Share your IAM configurations.

Support Us

Users, Groups, and Policies (JSON)

Pascual Vila

Cloud Instructor.

IAM Users are identities in AWS that represent people or applications. IAM Groups are collections of users that make it easier to manage permissions. IAM Policies are JSON documents that define what actions can be performed on which resources.

IAM Users

Each IAM user has a unique name and can have credentials (access keys, passwords) to access AWS services. Users are the fundamental building blocks of IAM and should be created individually rather than sharing credentials.

IAM Groups

IAM Groups are collections of IAM users. Groups make it easier to manage permissions for multiple users. Instead of attaching policies to individual users, you can attach policies to a group, and all users in that group inherit those permissions.

IAM Policies

IAM Policies are JSON documents that define permissions. Policies specify what actions can be performed on which resources. Policies can be attached to users, groups, or roles. The policy structure includes Version, Statement array with Effect (Allow/Deny), Action, and Resource.

IAM Users, Groups & Policies Glossary

IAM User: An identity in AWS that represents a person or application. Each user has a unique name and can have credentials (access keys, passwords) to access AWS services.
IAM Group: A collection of IAM users that makes it easier to manage permissions for multiple users. Policies attached to a group are inherited by all users in that group.
IAM Policy: A JSON document that defines permissions. Policies specify what actions can be performed on which resources. Policies can be attached to users, groups, or roles.
Policy Statement: A component of an IAM policy that contains Effect (Allow or Deny), Action (API operations), and Resource (AWS resources). Multiple statements can be combined in one policy.
Managed Policy: A standalone IAM policy that can be attached to multiple users, groups, or roles. Managed policies are reusable and easier to maintain than inline policies.