IAM
Identity and Access Management (IAM) are guidelines to ensure that the rights users have the appropriate access to resources.
Identity
- Synonym of authentication
- Make sure the user is who he claims to be
- Use of credentials: user/password, access key, temporary token, etc
- MFA (Multi-factor auth.)
- Once authenticated, requester is call principal
Access Management
- Authorization or Access control
- Determine who can do what with what resource under which circumstances
- Configuration access control:
- Access Control Lists
- Permission policies