Welcome to Identity Access Management-101!!!

Summery & Exam Tips

Identity Access Management Consists Of The Followings:

1. Users > End Users. They belongs in different groups
2. Groups > We can create and assign different group
3. Roles > Create for others AWS services i.e. S3, EC2
4. Policies > Permission is go through with the Policies. Generator

• IAM is a universal. it does not apply to regions at this time
• The "root account" is simply the account created when first setup your AWS account. It has complete Admin access.
• New Users have NO permissions when first created.
• New Users are assigned Access Key ID & Secret Access Keys when first created. (For Programmatically access to AWS echo system.It's a optional)2 Types of access - Console access & Programmatic Access
• These are not the same as a password. You cannot use the Access key ID & Secret Access Key to Login to the console. You can use this to ac access AWS via the API's and Command Line, however.
• You only get to view these once. If you lose them, you have to regenerate them. So, save them in a secure location.
• Always setup Multi-factor Authentication on your root account (god mode).
• You can create and customize your own password rotation policies.

--------Create A Billing Alarm-LAB

• ITC (Account Name) > My Account > Dashboard > all the way down OR
• Services > CloudWatch > Billing > Create Alarm