- Identity Management Access (IAM) is a framework of business process, policies and technologies these facilitate the management of digital identities.
- This IAM is used to give identity by creating a user and giving permissions to that user, we assign a password to the user.
- It is nothing but sharing your work with another person.
What is IAM password policy?
- We can set password policy on AWS account to specify complexity and rotations period of IAM user password.
- IAM has a password policy it as an instruction we give how to set password to IAM user.
How to Apply IAM Password Policy?
- We have to login to “AWS account”.
- Go to the URL http://aws.amazon.com/console/. When you click on URL this page will be appear.
- If you don’t have AWS account create it by clicking “Create a new AWS account” it’s like a Facebook account creation, it easy to create an account.
- If you have an AWS account go for sign in by choosing “Root User and give your registered email address then click on Next”.
Then it goes to password page, enter the password and click “Sign button”.
- Then at left side we find services which we can find all the services which AWS provides.
- Click on “services”.
- Click on “IAM” in Security column.
- We see in the medial of dashboard Delete you root access, Active MFA, create individual IAM user, Use Group to assign permissions, Apply an IAM Password Policy.
- In that click on “Apply an IAM password policy”.
- Click on “Manage password policy”.
- Click on “Set password policy”.
Figure1.0. Set password policy page.
- We see options which can enabled according to your needs.
- Enforce minimum password length, means minimum characters that you have to give to strength password.
- Enable if you want Require at least one uppercase letter from Lain alphabet (A-Z).
- Enable if you want Require at least one lowercase letter from Lain alphabet (a-z).
- Enable if you want Require at least one number.
- Enable if you want Require at least one non-alphanumeric character (!@#$=^&*()_+).
- “Enable password expiration”, means we can set IAM password to be valid for specified number of days after that user has to set new password.
- “Password expiration requires administration reset” we can prevent IAM user choosing new password after their current password is expired.
- Enable if you want “Allow user to change their own password”, if you want to enable this option we have to disable “Password expiration requires administration reset”.
- Enable if you want “Prevent password reuse”, means you can prevent password reuse by giving specific number.
- Click on “Save changes”.
Figure1.1. Options which I have selected.
- The password policy has created we can also modify this policy by clicking on Change password policy.
- Let’s check whether it is working or not.
- Click on “users”.
- Click on “Add user”.
- When I give password against to policy it showing you are not up to the mark.
- It means the password policy which you given is working.
By this we came to know that how to Apply IAM password to an account. We can see these password policies in all the private accounts like Facebook, Twitter, Gmail, etc. (every private account has their own password policy) in this AWS IAM we can set policy to the IAM users.