Cross account IAM - How to use IAM role from another AWS account | Hands-On Tutorial 2023

  Рет қаралды 7,760

Wojciech Lepczyński

Wojciech Lepczyński

Күн бұрын

Пікірлер: 12
@tamaraIT
@tamaraIT Жыл бұрын
you did a great job explaining it, great graphics, it's nice to watch
@WojciechLepczynski
@WojciechLepczynski Жыл бұрын
thanks for feedback :)
@Tony-bc4wc
@Tony-bc4wc Жыл бұрын
Thank you for this tutorial it is very useful
@WojciechLepczynski
@WojciechLepczynski Жыл бұрын
No problem. New tutorial coming soon
@eduardotayupanta6416
@eduardotayupanta6416 9 ай бұрын
For resource kms don’t work Is different for key policy?
@WojciechLepczynski
@WojciechLepczynski 9 ай бұрын
There are no implicit or automatic permission to use or manage a KMS key. The primary way to manage access to your AWS KMS resources is with policies. KMS keys belong to the AWS account in which they were created. However, no identity or principal, including the AWS account root user, has permission to use or manage a KMS key unless that permission is explicitly provided in a key policy, IAM policy or grant. The IAM identity who creates a KMS key is not considered to be the key owner and they don't automatically have permission to use or manage the KMS key that they created. Like any other identity, the key creator needs to get permission through a key policy, IAM policy, or grant. However, identities who have the kms:CreateKey permission can set the initial key policy and give themselves permission to use or manage the key. To better understand KMS you can read for example docs.aws.amazon.com/kms/latest/developerguide/control-access.html
@eduardotayupanta6416
@eduardotayupanta6416 9 ай бұрын
@@WojciechLepczynski thanks for your explanation, I was a bit confused with the key policy.
@WojciechLepczynski
@WojciechLepczynski 9 ай бұрын
sure, no problem KMS, especially cross-account and cross-region can be confusing
@sudsrmsee
@sudsrmsee Жыл бұрын
Ur name I m. Unable to read or speak, btw good 🎥
@WojciechLepczynski
@WojciechLepczynski 11 ай бұрын
Thanks for the feedback, new video coming soon.
@MarkoPetrovic-p2k
@MarkoPetrovic-p2k Жыл бұрын
If you need any evidence that AWS is pure mess riding on marketing, this is perfect example.
@WojciechLepczynski
@WojciechLepczynski Жыл бұрын
What do you mean Marko?
Cross account access in AWS using IAM Roles
16:26
Coderjony
Рет қаралды 1,7 М.
Secure Cross-account Access To Your AWS S3 Buckets Using IAM Roles!
13:48
Une nouvelle voiture pour Noël 🥹
00:28
Nicocapone
Рет қаралды 9 МЛН
Overlapping network addresses - How to deal with it in AWS using private NAT gateway | Hands-On
15:53
AWS Assume IAM Role and Cross Account Assume Role - LAB 3
27:13
PublicCloudLabs
Рет қаралды 1 М.
Cross AWS Account Access Made Easy IAM Roles Explained
8:35
WebMagic Informatica - AWS, Azure, GCP & Devops
Рет қаралды 12 М.
Cross Account Accessing an AWS S3 Bucket
11:40
Felix Yu
Рет қаралды 23 М.
AWS IAM Core Concepts You NEED to Know
21:40
Be A Better Dev
Рет қаралды 225 М.
AWS - 27 - Provide Cross Account Access to IAM User
12:19
Suroj Bera
Рет қаралды 1,7 М.
AWS Tutorial - AWS Cross Account Access using IAM Roles
27:42
NamrataHShah
Рет қаралды 5 М.