Enforcing access control with AWS IAM

Description

Who is this course for

This course is mainly for cloud security engineers, security analysts, identity professionals, network engineers, IT technicians, system administrators, computer science students, AWS support engineers and anybody who is interested in starting a career in the IT industry or transitioning to a role in the cloud space.

What you will learn

• How to create IAM users, user groups and roles

• How to authenticate into AWS via the console, CLI and API

• The differences between permanent and temporary credentials

• The differences between global and service-specific condition keys

• How to configure multi-factor authentication (MFA)

• The structure of IAM policies

• How to grant permissions using identity-based and resource-based policies

• How to restrict permissions using service control policies, session policies and permissions boundaries

• How to create policies that adhere to the principle of least privilege

• How to work with named profiles on the AWS CLI

• How to audit the activity of your IAM entities in the AWS cloud

• How to set up SAML-based federation between AWS IAM and AWS IAM Identity Center

• How to troubleshoot common errors related to authentication and authorization

• How to troubleshoot complex policies with the policy simulator

• The AAA security framework

• How to enrich your policies with paths and policy variables

• How to work around eventual consistency

Prerequisites

• A good internet connection

• A willingness to learn

FAQs

Do I need any previous experience?

Any previous experience in the AWS cloud would be beneficial but not necessary

Will I incur any charges during this course?

AWS IAM is a free service so as long as you clean up your resources at the end of every exercise you will not need to pay anything extra

Do I get any support with this course?

Yes, any question you have will be answered in the most timely manner

Will I get a certificate of completion at the end?

Yes, a certificate of completion will be awarded at the end

What You Will Learn!

• How to provision IAM users, user groups and roles
• How to authenticate via the AWS CLI, the AWS Management Console and Postman
• The differences between permanent and temporary credentials
• The differences between global and service-specific condition keys
• How to configure multi-factor authentication (MFA)
• The structure of IAM policies
• How to grant permissions using identity-based and resource-based policies
• How to restrict permissions using SCPs, session policies and permissions boundaries
• How to create policies that adhere to the principle of least privilege
• How to audit the activity of IAM identities
• How to set up SAML-based federation between AWS IAM and AWS IAM Identity Center
• How to troubleshoot errors related to authentication and authorisation
• How to troubleshoot complex policies with the policy simulator
• How to work with named profiles on the AWS CLI
• The AAA security framework
• How to enrich your policies with paths and policy variables
• How to work around eventual consistency

Who Should Attend!

• Cloud security engineers
• Security analysts
• IT administrators
• Cloud security architects
• SecDevOps engineers
• Cyber security professionals
• AWS support engineers

TAKE THIS COURSE