Using AWS Identity and Access Management (IAM), you can specify who can access which AWS services and resources, and under which conditions. IAM is a feature of your AWS account and is offered at no additional charge. To get started using IAM or if you have already registered with AWS, go to the AWS Management Console.

How it works

With IAM, you define who can access what by specifying fine-grained permissions. IAM then enforces those permissions for every request. Access is denied by default and access is granted only when permissions specify an "Allow." 

How IAM works

IAM video sessions and demos

Learn key IAM concepts by watching expert-led sessions and demonstrations.

Become an IAM policy master in 60 minutes or less (55:35)
10 easy and effective ways to secure your AWS environment (31:19)
Getting started with IAM and AWS Identity (1:02:15)
Best practices for securing your serverless applications (28:58)
Using IAM Access Analyzer with Amazon S3 Buckets (8:06)
IAM policies that provide capabilities for the security of your AWS accounts (23:52)