AWS IAM logo


Securely control access to AWS services and resources for your users
+ 1

What is AWS IAM?

It enables you to manage access to AWS services and resources securely. Using IAM, you can create and manage AWS users and groups, and use permissions to allow and deny their access to AWS resources.
AWS IAM is a tool in the Cloud Access Management category of a tech stack.

Who uses AWS IAM?

354 companies reportedly use AWS IAM in their tech stacks, including Walmart, deleokorea, and Trustpilot.

810 developers on StackShare have stated that they use AWS IAM.

AWS IAM Integrations

Amazon EKS, AWS Fargate, Amazon ECR, Amazon MQ, and Amazon Neptune are some of the popular tools that integrate with AWS IAM. Here's a list of all 32 tools that integrate with AWS IAM.
Pros of AWS IAM
Centralized powerful permissions based access
Straightforward SSO integration
Decisions about AWS IAM

Here are some stack decisions, common use cases and reviews by companies and developers who chose AWS IAM in their tech stack.

Jigar Shah
Security Software Engineer at Pinterest · | 8 upvotes · 146.6K views
Needs advice
AWS CloudTrailAWS CloudTrail
Splunk CloudSplunk Cloud

We would like to detect unusual config changes that can potentially cause production outage.

Such as, SecurityGroup new allow/deny rule, AuthZ policy change, Secret key/certificate rotation, IP subnet add/drop. The problem is the source of all of these activities is different, i.e., AWS IAM, Amazon EC2, internal prod services, envoy sidecar, etc.

Which of the technology would be best suitable to detect only IMP events (not all activity) from various sources all workload running on AWS and also Splunk Cloud?

See more

AWS IAM's Features

  • Manage IAM users and their access - You can create users in IAM, assign them individual security credentials (i.e., access keys, passwords, and Multi-Factor Authentication devices) or request temporary security credentials to provide users access to AWS services and resources.
  • Manage IAM roles and their permissions - You can create roles in IAM, and manage permissions to control which operations can be performed by the entity, or AWS service, that assumes the role. You can also define which entity is allowed to assume the role.
  • Manage federated users and their permissions - You can enable identity federation to allow existing identities (e.g. users) from your corporate directory or from a 3rd party such as Login with Amazon, Facebook, and Google to access the AWS Management Console, to call AWS APIs, and to access resources, without the need to create an IAM user for each identity.

AWS IAM Alternatives & Comparisons

What are some alternatives to AWS IAM?
Azure Active Directory
It is a comprehensive identity and access management solution that gives you a robust set of capabilities to manage users and groups. You can get the reliability and scalability you need with identity services that work with your on-premises, cloud, or hybrid environment.
Connect all your apps in days, not months, with instant access to thousands of pre-built integrations - even add apps to the network yourself. Integrations are easy to set up, constantly monitored, proactively repaired and handle authentication and provisioning.
A set of unified APIs and tools that instantly enables Single Sign On and user management to all your applications.
It is an authorization framework that enables a third-party application to obtain limited access to an HTTP service, either on behalf of a resource owner by orchestrating an approval interaction between the resource owner and the HTTP service, or by allowing the third-party application to obtain access on its own behalf.
JavaScript is most known as the scripting language for Web pages, but used in many non-browser environments as well such as node.js or Apache CouchDB. It is a prototype-based, multi-paradigm scripting language that is dynamic,and supports object-oriented, imperative, and functional programming styles.
See all alternatives

AWS IAM's Followers
815 developers follow AWS IAM to keep up with related blogs and decisions.