- Lab
- A Cloud Guru
Creating and Assuming an Administrator AWS IAM Role
In this Hands-on Lab we are going to work through creating a brand-new IAM Role within your AWS Sandbox account. This IAM Role will be granted Administrator Access permissions within the same account.
Path Info
Table of Contents
-
Challenge
Create IAM Role
- Create a brand-new IAM role named
CSAA_AdministratorTestand attach the AWS-managed policy titled AdministratorAccess. - Copy the IAM Trust Policy from the lab GitHub repo and update
%REPLACE_WITH_ACCOUNT_ID%with your account ID. This policy will only allow an IAM identity with yourcloud_userARN to assume the role
The naming convention for this step is critical to avoid conflicts in future steps!
- Create a brand-new IAM role named
-
Challenge
Assume the IAM Role
After creation, test assumption of the IAM role using the Switch Role console option.
-
Challenge
Create & Deploy CloudFormation Template of IAM Role
- After the role is verified to be working, create a new CloudFormation template that mimics the newly created IAM role. This allows for easy future deployment when required.
- To do this, copy and run the template code for which ever language you choose in Application Composer.
- When prompted, you must name the stack
AdministratorAccessRole
What's a lab?
Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.
Provided environment for hands-on practice
We will provide the credentials and environment necessary for you to practice right within your browser.
Guided walkthrough
Follow along with the author’s guided walkthrough and build something new in your provided environment!
Did you know?
On average, you retain 75% more of your learning if you get time for practice.
