AWS Identity & Access Mgmt (IAM)
AWS IAM: identity & access
12/Feb/2021
AWS Identity & Access Mgmt (IAM)
-
Mocagon: Execution-Movement area, Global scope [AWS Poster]
-
Full-name: AWS Identity & Access Mgmt
-
Provides: identity & access
-
Resource: user
-
Year: 2010
Birds of a feather
flock together!
Products that are often seen with AWS IAM, descending order of frequency:
| Prefix | Name | Description |
| Amazon | Simple Storage Service (S3) | object storage |
| Amazon | Elastic Compute Cloud (EC2) | virtual machine |
| AWS | CloudFormation | infra as code (decl) |
| AWS | Lambda | function runtime |
| Amazon | DynamoDB | key-value/document db |
| Amazon | Relational Database Service (RDS) | relational database |
| Amazon | CloudFront | CDN |
| Amazon | Simple Notification Service (SNS) | pub/sub messaging |
| Amazon | Simple Queue Service (SQS) | message queue |
| Amazon | API Gateway | API gateway |
Products that are related in Moca:
| Prefix | Name | Description |
| AWS | CloudTrail | operations planes audit log |
| Amazon | Cognito | login/registration |
| Amazon | Detective | security investigation |
| AWS | Directory Service | identity & access |
| Amazon | GuardDuty | security detection |
| AWS | Identity & Access Mgmt (IAM) | identity & access |
| Amazon | Inspector | security assessment |
| AWS | Organizations | cross-account governance |
| AWS | Resource Access Manager (RAM) | cross-account sharing |
| AWS | Single Sign-On (SSO) | cross-account sign-on |
| AWS | Control Tower | multi-account governance |
| AWS | Security Hub | cross-service security view |
| AWS | Security Token Service (STS) | credential vending |
News
-
2021/02/11: AWS Identity and Access Management now supports tags on additional resources
-
2021/01/27: Discover, review, and remediate unintended access to Secrets Manager secrets using IAM Access Analyzer
-
2021/01/12: Amazon Redshift now supports fine-grained access control on COPY and UNLOAD commands
-
2020/12/17: Amazon Data Lifecycle Manager now automates copying EBS snapshots across accounts
-
2020/12/15: AWS announces Amazon Managed Service for Prometheus for container monitoring
-
2020/12/15: Deploy Microsoft Active Directory Infrastructure on Amazon EC2 using AWS Launch Wizard
-
2020/12/14: Now Secure Your SageMaker Studio Access Using AWS PrivateLink and AWS IAM SourceIP Restrictions
-
2020/11/27: New AWS Solutions Consulting Offer - Centricity Secure Workplace for Government
-
2020/11/23: AWS Systems Manager now supports Amazon Virtual Private Cloud (Amazon VPC) endpoint policies
-
2020/11/19: AWS Identity and Access Management introduces new policy defaults for IAM user passwords
-
2020/11/10: New – Deep Dive with Security: AWS Identity and Access Management (IAM)
-
2020/10/15: AWS IAM Access Analyzer now supports archive rules for existing findings
-
2020/10/07: AWS Batch introduces tag-based access control
-
2020/09/30: Amazon S3 on Outposts is now generally available, expanding object storage to on-premises environments
-
2020/09/22: Now available AWS SSO credential profile support in the AWS Toolkit for JetBrains IDEs
-
2020/09/17: Amazon Detective introduces IAM Role Session Analysis
-
2020/09/16: Enforce encryption for Amazon Elastic File System resources using AWS IAM
-
2020/09/15: Amazon Kinesis Data Analytics now supports Apache Flink Kinesis Data Firehose Producer v2.0.0
-
2020/09/09: API Gateway HTTP APIs now supports Lambda and IAM authorization options
-
2020/08/25: AWS CloudTrail now provides relevant user statistics to act on anomalies detected by CloudTrail Insights
-
2020/08/10: AWS Lambda now provides IAM condition keys for VPC settings
-
2020/07/09: AWS Config Launches 28 Additional Managed rules
-
2020/07/08: Amazon Neptune supports specifying conditions in IAM policy using tags
-
2020/06/30: Amazon RDS Proxy is Generally Available
-
2020/06/25: Manage your AWS Identity and Access Management quotas with AWS Service Quotas