{"id":265,"date":"2019-02-05T08:44:40","date_gmt":"2019-02-05T08:44:40","guid":{"rendered":"https:\/\/www.testpreptraining.com\/tutorial\/?page_id=265"},"modified":"2022-03-03T11:09:17","modified_gmt":"2022-03-03T11:09:17","slug":"aws-identity-and-access-management-iam-principals","status":"publish","type":"page","link":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/","title":{"rendered":"AWS Identity and Access Management (IAM) Principals"},"content":{"rendered":"\n<p>Here, we will learn about AWS Identity and Access Management (IAM) Principals.<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Service that allows to control how people and programs are allowed to manipulate the AWS infrastructure.<\/li><li>Usually IAM uses identity like users, groups, and access control policies to control the use of AWS resources<\/li><li>AWS IAM control is granular to limit a single user to perform a single action on a specific resource from a specific IP address during a specific time window.<\/li><li>Applications can also be granted access to AWS resources<\/li><li>AWS IAM is not an identity store\/authorization system for applications.<\/li><li>permissions assigned to manipulate AWS infrastructure, and not within given application.<\/li><li>AWS IAM is not an operating system identity management.<\/li><\/ul>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Principals<\/strong><\/h4>\n\n\n\n<ul class=\"wp-block-list\"><li>a principal is an IAM entity allowed to interact with AWS resources, and can be permanent or temporary, and represent a human or an application.<\/li><li>three types of principals <ul><li>Root users <\/li><\/ul><ul><li>IAM users <\/li><\/ul><ul><li>Roles\/temporary security tokens. <\/li><\/ul><\/li><li>Root User <ul><li>Present during AWS account creation <\/li><\/ul><ul><li>Hence, single sign-in principal with the complete access to all AWS Cloud services and resources <\/li><\/ul><ul><li>User present till open account with AWS <\/li><\/ul><ul><li>root user can be used for both console and programmatic access to AWS resources. <\/li><\/ul><\/li><li>IAM Users <ul><li>persistent identities set up by IAM service to represent individual or applications. <\/li><\/ul><ul><li>there is no expiration period <\/li><\/ul><ul><li>are permanent entities that exist until an IAM administrator takes an action to delete them. <\/li><\/ul><ul><li>may create separate IAM users for each member of operations team to interact with console and use the CLI. <\/li><\/ul><ul><li>Simiarly, create dev, test, and production users for applications that need to access AWS Cloud services. <\/li><\/ul><ul><li>can create using principals with IAM administrative privileges at any time <\/li><\/ul><ul><li>Created through <ul><li>AWS Management Console <\/li><\/ul><ul><li>CLI <\/li><\/ul><ul><li>SDKs  <\/li><\/ul><\/li><\/ul><\/li><li>Roles\/Temporary Security Tokens <ul><li>Used for advanced IAM usage <\/li><\/ul><ul><li>used to grant specific privileges to specific actors for a set duration of time <\/li><\/ul><\/li><li>AWS offers the actor with a temporary security token from the AWS Security Token Service (STS)<\/li><li>requesting a temporary security token needs duration of token before it expires.<\/li><li>range of a temporary security token lifetime is 15 minutes to 36 hours.<\/li><li>Use cases enabled by Roles and Temporary Security Tokens <ul><li>Amazon EC2 Roles \u2014 Involves granting permissions to applications running on an Amazon EC2 instance. <\/li><\/ul><ul><li>Cross-Account Access \u2014 Involves granting permissions to users from other AWS accounts, whether you control those accounts or not. <\/li><\/ul><ul><li>Federation \u2014 Involves granting permissions to users authenticated by a trusted external system. <\/li><\/ul><\/li><\/ul>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter\"><img loading=\"lazy\" decoding=\"async\" width=\"571\" height=\"215\" src=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/08\/image-251.png\" alt=\"AWS Identity and Access Management (IAM) Principals\" class=\"wp-image-2761\"\/><\/figure><\/div>\n","protected":false},"excerpt":{"rendered":"<p>Here, we will learn about AWS Identity and Access Management (IAM) Principals. Service that allows to control how people and programs are allowed to manipulate the AWS infrastructure. Usually IAM uses identity like users, groups, and access control policies to control the use of AWS resources AWS IAM control is granular to limit a single&#8230;<\/p>\n","protected":false},"author":1,"featured_media":266,"parent":53,"menu_order":16,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"categories":[2],"tags":[7,478,479],"class_list":["post-265","page","type-page","status-publish","has-post-thumbnail","hentry","category-amazon-aws","tag-aws","tag-iam","tag-identity-and-access-management"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>IAM Principals - Testprep Training Tutorials<\/title>\n<meta name=\"description\" content=\"Learn more about AWS Identity and Access Management (IAM) Principals with thousands of practice tests and become professional now!\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"IAM Principals - Testprep Training Tutorials\" \/>\n<meta property=\"og:description\" content=\"Learn more about AWS Identity and Access Management (IAM) Principals with thousands of practice tests and become professional now!\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/\" \/>\n<meta property=\"og:site_name\" content=\"Testprep Training Tutorials\" \/>\n<meta property=\"article:modified_time\" content=\"2022-03-03T11:09:17+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/02\/IAM-Principal.png\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"591\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/\",\"name\":\"IAM Principals - Testprep Training Tutorials\",\"isPartOf\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#website\"},\"datePublished\":\"2019-02-05T08:44:40+00:00\",\"dateModified\":\"2022-03-03T11:09:17+00:00\",\"description\":\"Learn more about AWS Identity and Access Management (IAM) Principals with thousands of practice tests and become professional now!\",\"breadcrumb\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"AWS Certified Solutions Architect Associate (SAA-C03)\",\"item\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"AWS Identity and Access Management (IAM) Principals\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#website\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\",\"name\":\"Testprep Training Tutorials\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.testpreptraining.ai\/tutorial\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#organization\",\"name\":\"Testprep Training\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png\",\"contentUrl\":\"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png\",\"width\":583,\"height\":153,\"caption\":\"Testprep Training\"},\"image\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"IAM Principals - Testprep Training Tutorials","description":"Learn more about AWS Identity and Access Management (IAM) Principals with thousands of practice tests and become professional now!","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/","og_locale":"en_US","og_type":"article","og_title":"IAM Principals - Testprep Training Tutorials","og_description":"Learn more about AWS Identity and Access Management (IAM) Principals with thousands of practice tests and become professional now!","og_url":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/","og_site_name":"Testprep Training Tutorials","article_modified_time":"2022-03-03T11:09:17+00:00","og_image":[{"width":800,"height":591,"url":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/02\/IAM-Principal.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/","url":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/","name":"IAM Principals - Testprep Training Tutorials","isPartOf":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#website"},"datePublished":"2019-02-05T08:44:40+00:00","dateModified":"2022-03-03T11:09:17+00:00","description":"Learn more about AWS Identity and Access Management (IAM) Principals with thousands of practice tests and become professional now!","breadcrumb":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/aws-identity-and-access-management-iam-principals\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.testpreptraining.ai\/tutorial\/"},{"@type":"ListItem","position":2,"name":"AWS Certified Solutions Architect Associate (SAA-C03)","item":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-solutions-architect-associate-table-of-content\/"},{"@type":"ListItem","position":3,"name":"AWS Identity and Access Management (IAM) Principals"}]},{"@type":"WebSite","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#website","url":"https:\/\/www.testpreptraining.ai\/tutorial\/","name":"Testprep Training Tutorials","description":"","publisher":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.testpreptraining.ai\/tutorial\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#organization","name":"Testprep Training","url":"https:\/\/www.testpreptraining.ai\/tutorial\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/","url":"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png","contentUrl":"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png","width":583,"height":153,"caption":"Testprep Training"},"image":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/265","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/comments?post=265"}],"version-history":[{"count":10,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/265\/revisions"}],"predecessor-version":[{"id":51864,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/265\/revisions\/51864"}],"up":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/53"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/media\/266"}],"wp:attachment":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/media?parent=265"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/categories?post=265"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/tags?post=265"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}