Skip to main content

AWS Identity & Access Management

AWS Identity and Access Management

Securely manage identities and access to AWS services and resources

Get started with IAM

Why use IAM?

Use AWS Identity and Access Management (IAM) to manage and scale workload and workforce access securely supporting your agility and innovation in AWS.

Benefits of IAM

Set and manage guardrails with broad permissions, and move toward least privilege by using fine-grained access controls for your workloads.

Manage identities across single AWS accounts or centrally connect identities to multiple AWS accounts.

Grant temporary security credentials for workloads that access your AWS resources using IAM and grant your workforce access with AWS IAM Identity Center.

Generate least-privilege policies, verify external and unused access to resources, and continually analyze to rightsize permissions.
See More

Create granular permissions based on user attributes—such as department, job role, and team name—by using attribute-based access control. \n

Learn about attribute-based access control"},"metadata":{"tags":[]}},{"fields":{"id":"ams#c2","itemHeading":"Manage per-account access or scale access across AWS accounts and applications","itemLongLoc":"

Manage per-account identities with IAM or use IAM Identity Center to provide multi-account access and application assignments across AWS. \n

Learn about centralizing identity and access management"},"metadata":{"tags":[]}},{"fields":{"id":"ams#c3","itemHeading":"Establish organization-wide and preventative guardrails on AWS","itemLongLoc":"

Use service control policies to establish permissions guardrails for IAM users and roles, and implement a data perimeter around your accounts in AWS Organizations. \n

Learn about data perimeter guardrails"},"metadata":{"tags":[]}},{"fields":{"id":"ams#c4","itemHeading":"Set, verify, and right-size permissions toward least privilege","itemLongLoc":"

Streamline permissions management and use cross-account findings as you set, verify, and refine policies on the journey toward least privilege. \n

Learn about the least-privilege journey"},"metadata":{"tags":[]}},{"fields":{"patternHeading":"Use cases","patternBoolean2":"false","id":"ams#text-columnsc5#pattern-data"},"metadata":{"tags":[{"name":"pattern-data","description":"Default pattern data","id":"ams#text-columnsc5#pattern-data","namespaceId":"text-columns"}]}}]},"metadata":{"auth":{},"testAttributes":{}},"context":{"page":{"pageUrl":"https://aws.amazon.com/iam/"},"contentType":"page","environment":{"stage":"prod","region":"us-west-2"},"sdkVersion":"2.0.25"},"refMap":{"manifest.js":"3daf852ae2","rt-qa-sampler.css":"02639281e2","rt-qa-sampler.js":"14cb90f291","rt-qa-sampler.rtl.css":"a9a9a9eebe","rt-qa-sampler.css.js":"b441576b67","rt-qa-sampler.rtl.css.js":"365c7ae473"},"settings":{"templateMappings":{"patternDark":"patternBoolean2","patternHeading":"patternHeading","patternSubheading":"patternSubheading","dark":"itemBoolean","topic":"itemHeading","content":"itemLongLoc"}}}

Did you find what you were looking for today?

Let us know so we can improve the quality of the content on our pages