AWS Video Catalog

AWS re:Invent 2016: IAM Best Practices to Live By (SAC317)

Published on Dec 03, 2016

This session covers AWS Identity and Access Management (IAM) best practices that can help improve your security posture. We cover how to manage users and their security credentials. We also explain why you should delete your root access keys—or at the very least, rotate them regularly. Using common use cases, we demonstrate when to choose between using IAM users and IAM roles. Finally, we explore how to set permissions to grant least privilege access control in one or more of your AWS accounts.

55:39

AWS re:Invent 2016: Become an AWS IAM Policy Ninja in 60 Minutes or Less (SAC303)

55:39

58:14

AWS re:Invent 2016: IAM Best Practices to Live By (SAC317)

58:14

2:06

AWS Knowledge Center Videos: "How can an IAM user access AWS billing information?"

2:06

AWS re:Invent 2016: IAM Best Practices to Live By (SAC317)

2021

Centralized Authorization with IAM Authentication and RDS Proxy

What is IAM Role Chaining and can I increase the IAM role chaining session duration limit?

AWS Supports You: Leveraging IAM Trust Relationships

Demo: Use IAM Access Analyzer Policy Validation to Set Secure and Functional Policies

How does IAM evaluation logic work using an explicit Deny policy with multiple condition keys?

AWS re:Invent 2020: Untangling multi-account management with ConsoleMe

AWS re:Invent 2020: AWS identity: Choosing the right mix of AWS IAM policies for scale

AWS Knowledge Center Live: IAM Best Practices and Design Decisions