Understanding IAM AWS Managed and Customer Managed Policies | Scribe

    Understanding IAM AWS Managed and Customer Managed Policies

    • Hafeez Baig |
    • 40 steps |
    • 4 minutes
    information ordinal icon

    Refer to the following guide to learn how to use IAM in the cloud\ <https://scribehow.com/shared/Creating_an_IAM_User_and_User_Group_in_AWS_Management_Console__hWNiiXlcRJKFqYZZEJD-cg>

    1

    Sign in to **AWS Management Console** as an **IAM User** **Pre-requisite** - Ensure you have selected the AWS region closest to your location\ For this guide, we will be using us

    2

    Type **IAM** in the search bar and click on **IAM** to view the IAM Dashboard

    information ordinal icon

    **What is IAM in AWS?** IAM stands for Identity and Access Management, and it's a key service provided by Amazon Web Services (AWS). IAM allows you to manage access to AWS services and resources securely. With IAM, you can create and manage users, groups, and roles, and define permissions to allow or deny access to AWS resources.

    3

    On the **IAM Dashboard,** click on the **Policies** from the left bar

    4

    **Policies** wizard will open, click on the **AdministratorAccess** policy

    information ordinal icon

    **What is the AdministratorAccess policy in AWS?** The AdministratorAccess policy in AWS is a predefined managed policy that grants full access to all AWS services and resources within an AWS account. When you attach this policy to an IAM user, group, or role, the entity associated with it gains unrestricted access to perform any action on any resource within the AWS environment.

    5

    **AdministratorAccess** wizard will open, and scroll the page to view the policy permissions

    6

    On the right side click on the button **JSON** to view the JSON code

    7

    On the **Permissions defined in this policy** section you can view the JSON code

    8

    Click on the **Users** from the left bar

    9

    **Users** wizard will open, click on the **in28minutes-ops-user**

    information ordinal icon

    Refer to this guide to learn how to create the **in28minutes-ops-user** IAM user\ <https://scribehow.com/shared/Creating_an_Operations_IAM_User__5JyMzA1rRUmvp81UmVh3gA>

    10

    **in28minutes-ops-user** will open, scroll the page and click on the **AmazonEC2FullAccess** policy

    information ordinal icon

    **What is the AmazonEC2FullAccess policy in AWS?** The AmazonEC2FullAccess policy in AWS is a predefined managed policy that grants full access to Amazon Elastic Compute Cloud (Amazon EC2) resources and related services. When you attach this policy to an IAM user, group, or role, the entity associated with it gains unrestricted access to perform any action related to EC2 instances, such as creating, modifying, and terminating instances, as well as managing associated resources like Elastic Block Store (EBS) volumes, security groups, and snapshots.

    11

    **AmazonEC2FullAccess** wizard will open, and scroll the page to view the services allowed for this policy

    12

    Click on the **JSON** to view JSON code

    13

    To create a new policy, click on the **Policies** from the left bar

    14

    On the **Policies** wizard, click on the **Create policy** button on the right side

    15

    **Specify permissions** wizard will open, click on the **Actions** button dropdown and select **Import policy** button on the right side