AWS Identity and Access Management (IAM) is a web service that enables Amazon Web Services (AWS) customers to manage users and user permissions in AWS. The service is targeted at organizations with multiple users or systems that use AWS products such as Amazon EC2, Amazon SimpleDB, and the AWS Management Console. With IAM, you can centrally manage users, security credentials such as access keys, and permissions that control which AWS resources users can access.

Using IAM
Introduces you to AWS Identity and Access Management, helps you set up an account, and walks you through a simple example to use Amazon RDS for the first time. Also provides tips and links to advanced product features and resources.
HTML | PDF | Kindle


IAM section of AWS CLI Reference
Describes the AWS CLI commands that you can use to administer IAM. Provides syntax, options, and usage examples for each command.
HTML


IAM API Reference
Describes all the API operations for AWS Identity and Access Management in detail. Also provides sample requests, responses, and errors for the supported web services protocols.
HTML | PDF

 

Using Temporary Security Credentials
Describes some common scenarios for granting temporary access, explains how to use the AWS STS API to generate temporary security credentials, describes how permissions work, and provides links to information about how to use temporary security credentials with other AWS products.
HTML | PDF | Kindle


STS section of the AWS CLI Reference

Describes the AWS CLI commands that you can use to generate temporary security credentials. Provides syntax, options, and usage examples for each command.
HTML


STS API Reference
Describes all the API operations for AWS STS in detail. Also provides sample requests, responses, and errors for the supported web services protocols.
HTML | PDF

For older versions of this documentation: