Hero Banner Description Text

AWS Identity and Access Management (IAM) Day | New York

Amazon Web Services

At this free technical event, we will introduce you to IAM concepts using easy-to-follow examples, and tools and strategies you can use for controlling access to your AWS environment. We will dive deep into permissions and how to use IAM roles to delegate access to your AWS resources. We’ll also cover how to integrate Active Directory with AWS workloads.


9:30AM-10:00AM | Registration

10:00AM-12:00AM | IAM Introduction and Best Practices: This session introduces the concepts of AWS Identity and Access Management (IAM) and walks through the tools and strategies you can use to control access to your AWS environment. We describe IAM users, groups, and roles and how to use them. We demonstrate how to create IAM users and roles, and grant them various types of permissions to access AWS APIs and resources. We also cover the concept of trust relationships, and how you can use them to delegate access to your AWS resources. This session covers also covers IAM best practices that can help improve your security posture. We cover how to manage IAM users and roles, and their security credentials. We also explain ways for how you can securely manage you AWS access keys. Using common use cases, we demonstrate how to choose between using IAM users or IAM roles. Finally, we explore how to set permissions to grant least privilege access control in one or more of your AWS accounts. Level 100

12:00PM-1:00PM | Lunch (will be provided)

1:00PM-2:00PM | How to Use IAM Roles to Federate Users and Delegate Access to AWS: Customers use IAM roles to delegate access to services, applications, accounts, and federated users using temporary credentials. We will start by defining use cases for IAM roles, tools to use IAM roles in your account, and techniques to manage role permissions. We will cover how customers can use their existing identities to grant access to AWS. Using demonstrations, we will learn how to monitor roles across accounts, grant cross account access, and scope down permissions for a particular entity. This session will cover how to use roles for developers building applications on AWS and for administrators controlling and monitoring access. Level 300

2:00PM-3:00PM | Policy Ninja: We take an in-depth look at the AWS Identity and Access Management (IAM) policy language. We start with the basics of the policy language and how to create and attach policies to IAM users, groups, and roles. As we dive deeper, we explore policy variables, conditions, and other tools to help you author least privilege policies. Throughout the session, we cover some common use cases, such as granting a user secure access to an Amazon S3 bucket or to launch an Amazon EC2 instance of a specific type. Level 300

3:00PM-3:15PM | Break

3:15PM-4:15PM | Best Practices for Integrating Active Directory with AWS Workloads: Active Directory (AD) is essential for Windows workloads in the cloud. AWS offers customers multiple ways to integrate AD with cloud workloads like EC2, RDS, and AWS Enterprise Applications: AWS Directory Service for Microsoft Active Directory (Enterprise Edition) as a managed service and Active Directory running on AWS EC2 Windows instances. Which option is right for you? This session will discuss the key deployment considerations for each option to help you identify which best meets your project goals, and the effort involved. The session will cover options for integrating with your on-premises directory, port and security considerations, application considerations, and best practices. Level 200

Event Details

Date: Monday, October 16, 2017
Time: 10:00AM-4:15PM
Location: 350 W Broadway, New York, NY (view map)

Pre-registration is closed. Onsite registration will be available, space permitting.