AWS service you need to learn as Data Engineer

In this article I’m going to explain the basic of IAM Service. As a Data Engineer need to get familiar with IAM service this will make you understand how AWS service and shared accounts works.

IAM Overview

An AWS Identity and Access Management (IAM) user is an entity that you create in AWS to represent the person or application that uses it to interact with AWS. A user in AWS consists of a name and long-term credentials.

Follow these steps to understand better

1. If you don’t have AWS account, create an account you will get 12 months free account for learning.
   click here to create free account : Link
2. After creating account, search for IAM in search console.

Interface of Creating user Group

Create user group and attach permissions. At the start, attach only S3, Lambda Full access as shown below.

I will show how the shared AWS accounts in organizations will work.

As of now, we created an user group, why we need user group. In an organizations they will have different groups. Example test, dev and prod groups these groups will have different permissions and users.

They will create these separate groups and attach policy which are necessary for that particular group. This helps them to give access only service which is required to work on that project rather than giving access to whole account.

This will help you, to know why user group is needed.

3. Now, we will create an user and add user to the created user group. This will help the user to get the necessary AWS service permissions.

Let’s understand how to create a user

Interface to create an user

click on create user to create user and follow as shown in Image below

Creating user

specify your password or click autogenerated password. and click on next

Add user to group and click on the user group created. Hit next button.

You will get the information to login to the created user account.

Once you completed these steps copy the sign in URL in different browser. I recommend to user different browser this will help you to simultaneously access both admin account and user account, you will see the difference.

4. After logging into the user account with credentials. Search for the service that you gave permission for that group. If you have given permission you can view the information else you will get access denied alert message. You can’t do anything without attaching permissions for that create group.

Will see importance of role in next article. Thanks

How to easily automate python scripts

“Unlock the power of data with my freelance Data Analytics and Data Engineering services on Upwork. Let’s turn your data into actionable insights. Connect with me on Upwork to kickstart your data-driven journey.” click here Link