AWS Identity and Access Management (IAM) Made Easy with Terraform

Tags: , ,
As Technology Services is in the process of moving services to the Amazon cloud, it is important for service admins to have access to AWS resources to perform their day-to-day tasks following the principle of least privilege. We have established a process to determine the level of access needed on specific AWS resources. After migration of two services into the AWS cloud, admins are pleased with the level of access they have received, and are able to perform regular maintenance on services without our intervention. We will discuss where we started with AWS IAM, the process we established on managing IAM roles and policies, and how we use Terraform to write IAM code. We will also discuss our future goals on managing IAM roles and policies.