IAM Best Pratices in AWS

February 8, 2016 — Leave a comment

IAM Best Pratices in AWS

IAM Management Console

– Lock away your AWS account root access key

Delete your AWS root account access keys, because they provide unrestricted access to your AWS resources. Instead, use IAM user access keys or temporary security credentials

– Activate MFA on your root account

Activate multi-factor authentication (MFA) on your AWS root account to add another layer of protection to help keep your account secure
– Create individual IAM users

Create IAM users and give them only the permissions they need. Do not use your AWS root account for day-to-day interaction with AWS, because the root account provides unrestricted access to your AWS resources

– Use groups to assign permissions

Use IAM groups to assign permissions to your IAM users to simplify managing and auditing permissions in your account.

– Apply an IAM password policy

Use a password policy to require your IAM users to create strong passwords and to rotate their passwords regularly

No Comments

Be the first to start the conversation!

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s