I. Introduction

In order to grant a physical user to access AWS, it is recommended to create IAM user for that specific user instead of sharing credentials among team members. In this tutorial, we will guide you on create and recover access to an IAM user with administrator rights on AWS. With the same approach you can also create IAM user with other rights too.

II. How to create access to an IAM account with administrator rights on AWS

In order to make IAM user with administrator rights on AWS, the best practice is to have the IAM user under IAM Group with administrator rights.

In general, the steps to conduct as follow:

1. Create IAM user for a physical user. It is not encouraged to share the credentials of IAM user among team member.

• To do this, login to your AWS Management Console
• Go to the IAM service page
• Click on the button Add users in the tab Users
• Name the User as you want
• Then, you need to specify the Access type to your User:
  • Choose Access key - Programmatic access if the user needs to utilize AWS API, CLI, SDK, and development tools
  • Choose Password - AWS Management Console access if the users need to sign-in to the AWS Management Console
• Click on Permissions button at the end of page
• Skip on this part as we will setup later.
• Proceed on add Tags for your IAM user and finish creating IAM user

1. Create a IAM group. You need to attach AWS managed permissions policy AdministratorAccess to the group