IAM
Definition
IAM, or Identity and Access Management, is a framework of policies and technologies for ensuring that the right individuals have the appropriate access to technology resources. It involves managing user identities, authentication, and authorization to ensure secure access to systems and data. IAM systems provide a way to create, manage, and delete user accounts and permissions, ensuring that users have only the access necessary to perform their job functions.
Secure Settings Example
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "s3:ListBucket",
"Resource": "arn:aws:s3:::example-bucket",
"Condition": {
"IpAddress": {
"aws:SourceIp": "192.0.2.0/24"
}
}
},
{
"Effect": "Deny",
"Action": "s3:*",
"Resource": "arn:aws:s3:::example-bucket",
"Condition": {
"Bool": {
"aws:SecureTransport": "false"
}
}
}
]
}
Insecure Settings Example
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "s3:*",
"Resource": "*"
}
]
}