IAM Summary¶

Users: mapped to a physical user; has a password for AWS Console.
Groups: contains users only
Policies: JSON document that outlines permissions for users or groups
Roles: for EC2 instance or AWS services
Security: MFA + Password Policy
Access Keys: access AWS using the CLI or SDK
Audit: IAM Credential Reports & IAM Access Advisor