Task 1: Create IAM Users and Groups

Introduction to AWS IAM

AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources. You can use IAM to manage users, groups, and permissions, allowing you to grant granular access to your AWS environment.

Key Concepts:

• Users: A user in IAM represents a person or an application that interacts with AWS services. Each user has a unique set of credentials.

• Groups: Groups are collections of IAM users. You can assign permissions to a group, which then apply to all users in the group.

• Permissions: Permissions define what actions users and groups can perform on specific AWS resources.

Task 1: Create IAM Users and Groups

In this task, you'll create IAM groups for different roles in your organization and then create users, assigning them to the appropriate groups.

Step 1: Create IAM Groups

1. Sign in to the AWS Management Console:

   • Go to AWS Console.

   • Sign in using your credentials.

2. Navigate to IAM:

   • In the AWS Management Console, find the search bar at the top and type "IAM".

   • Click on IAM from the search results.

   • 

3. Create a Group:

   • In the IAM Dashboard, select User groups from the left-hand menu.

   • 

   • Click on Create group.

   • 

   • 

4. Name the Group:

   • Enter a group name. For this task, you'll create three groups: Developer, Quality Assurance, and DevOps Administrator.

   • For example, start with "Developer".

5. Assign Permissions:

   • You can attach policies to the group to define the permissions.

   • For now, you can skip attaching policies or select some basic ones depending on your needs (e.g., AmazonS3ReadOnlyAccess for Developer).

6. Review and Create:

   • Review the group details and click on Create group.

   • 

7. Repeat the Process:

   • Follow the same steps to create the Quality Assurance and DevOps Administrator groups.

Step 2: Create IAM Users

1. Navigate to Users:

   • In the IAM Dashboard, select Users from the left-hand menu.

   • 

   • Click on Add user.

   • 

2. Add User Details:

   • Enter a user name (e.g., jaffar_developer for a Developer user).

   • Select Programmatic access if the user needs to interact with AWS via CLI, SDK, or API.

   • You can also select AWS Management Console access if they need to log in to the AWS Console.

   • 

3. Set Permissions:

   • On the next screen, choose Add user to group.

   • Select the appropriate group for this user (e.g., Developer).

   • 

4. Review and Create:

   • Review the user details and click on Create user.

   • 

5. Download Credentials:

   • Once the user is created, download the credentials (access key ID and secret access key) as they won't be shown again.

6. Repeat the Process:

   • Repeat the steps to create users for the Quality Assurance and DevOps Administrator groups.

Conclusion

In this task, I've learned how to create IAM groups and users, assigning them to the appropriate groups. IAM is a fundamental service in AWS that ensures secure access management to your AWS resources. Understanding how to manage users and permissions is crucial for maintaining a secure and efficient AWS environment.