I made a IAM user through my Root account in AWS. In addition, I stored the credentials in aws-vault which helps to execute commands faster and user-specific.
- Provides Separate space to work in
- Privacy
- Multi-user support
- SSH access from desktop terminal
- Root-user control
-
Searched for "IAM" in AWS dashboard
-
Setup MFA (Multi Factor Authentication) for root user [Mandatory]
-
Downloaded Google Authenticator app from playstore in my Android Device
-
Signed in with the details provided by AWS MFA portal
-
Clicked on Reveal Pin to get Token (refreshes every 30 second)
-
Create User
-
Added permissions (existing policies) • With Full access and administration access ○ IAM ○ IAM User ○ IAM UserChangePassword ○ API Gateway ○ Lambda ○ CloudFormation
-
Displays the Credentials (Download the .csv file or copy and store the credentials in a safe location, This is will not be displayed again)
-
Incase you forgot to store the credentials, you need to create Access Key again and delete the previous one (Maximum limit of Access Key is 2)
- Setting Credentials using AWS-Vault :
aws-vault add [user-id]
-
Asks for access_key_id and secret_access_key
-
Copy and paste the credentials of the IAM user created
-
Checks if the Credentials are stored correctly (Display Details of the Profile)
aws sts get-caller-identity
- You can also list the users and store more credentials with different user-id
aws-vault list --> (Lists user)
aws-vault add [user-id] --> (Adds more user)
