IAM Role & Condition


In lesson Getting started with IAM we have created IAM User with admin rights for all services. In practice, we usually only grant sufficient rights (minimum privileges - least privilege) to the administrator.

In this article, we will review the concept of IAM, then proceed to create a User/Group that plays the role of admin for each EC2 and RDS service. The next step is to create a Role and increase security by setting additional restrictions by IP address and time.


Assume Role Process


  1. Introduction to IAM
  2. Create IAM Group
  3. Create IAM User
  4. Configure IAM Role & Condition
  5. Resource Cleanup