En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

How to use IAM to provide access to users efficiently and securely

0

Hi, we have a couple of developers who are working on various functionalities. We want to give each developer some required permissions on the resources they are creating. How can we do it easily? Instead of adding the resources manually every time to the policy whenever created, is there any better way?

Sujets
Sécurité, identité et conformité
Balises
Sécurité, identité et conformitéCentre d’identité IAM AWSPolitiques IAM
Langue
English
IndieGameDeveloperFromParallelWorld
demandé il y a 9 mois244 vues
2 réponses
0
Réponse acceptée

Take a look at this: IAM tutorial: Define permissions to access AWS resources based on tags.

profile pictureAWS
EXPERT
kentrad
répondu il y a 9 mois
profile pictureAWS
EXPERT
Jose Guay
vérifié il y a 9 mois
0

Hi,

the simplest way is to use a naming convention like https://cjrequena.com/2020-06-05/aws-naming-conventions-en but where you would call $Environment to first position in the name and give it a different value for each of your developers.

Then, you will authorize in IAM policies with Resource:"service: DevPrefix*" to allow your devs to do what they want on their resources (i.e. those whose names start with their prefix)

AWS Iam Identity Center and AWS Organizations are the next step but they are more involving but go much further (multi-account)

Best,

Didier

profile pictureAWS
EXPERT
Didier_Durand
répondu il y a 9 mois
  • IndieGameDeveloperFromParallelWorld
    il y a 9 mois

    Thanks. Can you share some good blog post on these as I didnt understand fully what you tried to say as I am not that advanced in IAM.

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents