IAM Components

We’ve already seen What is IAM in AWS in our previous post, In this post we will be focussing on IAM Components in AWS. There are 6 IAM Components in AWS.

Iam Components
Iam Components

IAM provides the infrastructure necessary to control authentication and authorization for your account. The IAM infrastructure includes the following elements or components.

  1. Principal
  2. Request
  3. Authentication
  4. Authorization
  5. Action
  6. Resources

Let’s try to understand each component in brief.

IAM Component
IAM Component

Principal

principal is a person or application that can make a request for an action or operation on an AWS resource. Basically principal is someone who will do some work or operation. The principal can be a user, role, federated user or application.

Request

The work which principal will do based on authentication is called a request. When a principal tries to use the AWS Management Console, the AWS API, or the AWS CLI, that principal sends a request to AWS. Request is basically set of operations.

Authentication

When we create a user so he/she is authenticated to use AWS account is called Authentication. A principal must be authenticated (signed in to AWS) using their credentials to send a request to AWS.

Authorization

Now what level of operation that user can perform depends on his Authorization. So basically it is level of permission which is determined by policies.

Actions or Operations

After your request has been authenticated and authorized, AWS approves the actions or operations in your request. Action is the work which Principal has requested.

Resources

A resource is an object that exists within a service. A resource is an object where actions are performed.

So this was brief about components of IAM AWS which should be sufficient to get started, If you want to get in depth of each you can click here.



Categories: AWS

Tags: , , , , ,

3 replies

Trackbacks

  1. What is IAM in AWS – THE NUCLEAR GEEKS
  2. How to create IAM User in AWS step by step – THE NUCLEAR GEEKS
  3. What are IAM Policies in AWS – THE NUCLEAR GEEKS

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: