IAM => user
Create user => username, tick provide user => I want to create IAM User => Auto generate / Custom Password => User must create => Next
Add user to group => Create group => type name => select AdministratorAccess => Create user group => click vào tên mới tạo => Next
Add tags => Department/Enginerring => Create user
Send email or download csv => return user list
Group sẽ nằm ở IAM => User group
User => user mới tạo => tab permission
IAM dashboard => create alias
IAM => User => Select User => Permission => Add permission
Attach policy directly => search and sselect IAMReadOnlyAccess => Next => Add permission
Account setting => password policy
Tên account góc phải => security Credentials => MFA
IAM => User => Select user => Security credentials => Access key => assign access key
Chọn CLI => Check vào I understand => Next => Create access key => Download .csv file => DONE
Mở CLI => chạy lệnh aws configure => Nhập access key & secret => region và default (2 lần enter)
Thử chạy lệnh aws iam list-users
IAM => Role => create role
Chọn AWS Service => chọn service EC2 => Chọn EC2 => Next
Add permission IAMReadOnlyAccess => Next
Đặt tên Role & Description => Create role
IAM => Access report => redential report => download
IAM => User => Select User => Access Advisor tab
