How to Create an IAM User in AWS

IAM (Identity and Access Management) in AWS helps you securely manage access to your AWS services and resources. Creating IAM users allows you to share the overall burden of the management by assigning specific permissions to individuals or applications without having to share access to the root user profile, thereby maintaining overall security.

Follow this step-by-step guide to create an IAM user with the right access and credentials.

A step-by-step guide to creating an IAM user in AWS

1. Log in to the AWS Console

Sign in to your AWS console using the root user account. 

2. Open the IAM dashboard

Search for IAM in the search bar in your AWS Console and click on IAM (Manage access to AWS resources). This will open the IAM Dashboard.

3. Add user

In the left sidebar, click “Users” and then click on the “Add users” button at the top to start adding an IAM user. Now, you can add the details of the user you want to add. It’ll need you to add details such as the user's name, the kind of access the user would have, etc.

Under the access type, check “Password - AWS Management Console access” if you want the user to log in via web console, and check the “Access key - Programmatic access” if they need CLI/API access. Then click next.

4. Set permissions

You can assign permissions in three ways. For beginners, choose “Attach existing policies directly” and select a policy like AdministratorAccess or AmazonS3ReadOnlyAccess, depending on what the user needs and then click Next.

5. Review and create user

Review all the details to make sure everything is as you want it to be, including the permissions, and then click on “Create user.”

6. Save and share credentials

You’ll see a success screen with the user’s credentials. You can download the CSV file or copy the access key, secret key, and login URL and share it securely with the user.