create-iam-user-aws

How to Create an IAM User in AWS

IAM (Identity and Access Management) in AWS helps you securely manage access to your AWS services and resources. Creating IAM users allows you to share the overall burden of the management by assigning specific permissions to individuals or applications without having to share access to the root user profile, thereby maintaining overall security.

Follow this step-by-step guide to create an IAM user with the right access and credentials.

A step-by-step guide to creating an IAM user in AWS

1. Log in to the AWS Console

Sign in to your AWS console using the root user account. 

2. Open the IAM dashboard

Search for IAM in the search bar in your AWS Console and click on IAM (Manage access to AWS resources). This will open the IAM Dashboard.

3. Add user

In the left sidebar, click “Users” and then click on the “Add users” button at the top to start adding an IAM user. Now, you can add the details of the user you want to add. It’ll need you to add details such as the user's name, the kind of access the user would have, etc.

Under the access type, check “Password - AWS Management Console access” if you want the user to log in via web console, and check the “Access key - Programmatic access” if they need CLI/API access. Then click next.

4. Set permissions

You can assign permissions in three ways. For beginners, choose “Attach existing policies directly” and select a policy like AdministratorAccess or AmazonS3ReadOnlyAccess, depending on what the user needs and then click Next.

5. Review and create user

Review all the details to make sure everything is as you want it to be, including the permissions, and then click on “Create user.”

6. Save and share credentials

You’ll see a success screen with the user’s credentials. You can download the CSV file or copy the access key, secret key, and login URL and share it securely with the user.

Pump saves ~60% on CLOUD *for free*

FAQ

Can I create multiple IAM users at once?

Yes, AWS IAM allows you to create multiple users in a single batch using the AWS Management Console or AWS CLI.

What’s the difference between IAM users and roles?

IAM users are for people or apps that need long-term access. IAM roles are for temporary access, often used with services like EC2 or Lambda.

What happens if I lose the IAM user’s access key?

If you lost the IAM user’s access key you’ll need to generate a new access key from the IAM console. You can’t retrieve the old one.

Can I set a password policy for IAM users?

Yes you can set a password policy for IAM users. For this, go to IAM > Account settings and configure password requirements like complexity, expiration, etc.

Get started with PUMP for free

No contracts, no credit card needed to sign up