Sign in to the AWS Management Console and open the IAM console at https://console.aws.amazon.com/iam/. You will see your Identity & Access Management(IAM).
Here security status has 5 step to complete. 1st one is already completed. Now need to complete the remaining steps.
Now click on Activate MFA on your account. then click on Manage MFA. Then click on Multi-factor authentication (MFA) and click on Activate MFA.
After that you will see
Select Virtual MFA device and click on continue if you have an smartphone(Android/IOS etc). Remaining two(U2F security key & Other hardware MFA device) can be used if you have any MFA hardware device.
You nee to install among these apps Authy, Duo Mobile, LastPass Authenticator, Microsoft Authenticator, Google Authenticator. Scan the QR code. You will get two security code. Fill these in the respective box. If you are using Google Authenticator, it will generate random six digit codes. Put the the 2 codes in the respective textbox.
Note: If have enable MFA then it is mandatory to have the Authenticator app in your mobile, otherwise you will lose your AWS account or need to verify your account using email and mobile no. When you have enabled MFA then for every login it will ask MFA code along with valid email & password. Hence either don't enable MFA or if enabled then make sure to not delete the authenticator app and not lose the mobile because without your mobile, you cannot login to your AWS console if you have lost you mobile.
After that you will see.
If your 1st step Delete your access keys showing warning icon like this
then you need to Delete your root access keys item on the Security Status and click on Manage Security Credentials. A new page entitled Your Security Credentials will be displayed. Expand Access Keys (access key ID and secret access key) section. A list of your access key will be listed. Delete all of them using Delete link located on the right side, and confirm any dialogue box that may show up.
Now in your Dashboard, you will see 2 step completed.
Now goto 3rd step, Create Individual IAM users.
Click on Add user. You will see one form. Fill the required details and click on Next: Permissions.
Next you will see this
As I need the Administrator access, Hence I will choose Attach existing policies directly.
Then click on Next: Tags.
This is optional step. Hence I will leave as it is and click on Next: Review.
Finally, click on Create user.
Now the user successfully created. You can download the credentials.csv file to know the username, access key id, secret access key and console login link. Go to the Dashboard you will see 3 steps completed.
Now click on Use groups to assign permissions to create the group.
click on Create New Group.
Set the group name as you want then click on Next Step.
Then attach the policy. I will give here Administrative access then click Next Step.
After review click on Create Group.
Click on the group name(admin) to see the summary and add users to the group.
You can select the user to add into the group.
After selecting then click on Add Users.
Now user is added into the group as you are seeing. User inherits the permissions from the Group. Hence if the permission is directly attached to the User, you can detach the permission. To detach the permission go to the Users in the left side of menu
Then click on the user name.
You can see the permission is directly attached. Click on the cross icon to detach the
permission.
permission.
Click on Detach. Now go to the Dashboard. You will see
Click on Apply an IAM password policy.
Click on Set Password Policy.
Click on Apply an IAM password policy.
Click on Set Password Policy.
Then click on Save Changes. Finally, go to the Dashboard and you will see all the security
steps completed.
steps completed.
Thanks
Posts
Java Institute in Noida
ReplyDelete