Help Center/ IAM Identity Center/ User Guide/ Permissions Management/ Creating an IAM User and Granting Permission to Use IAM Identity Center
Updated on 2024-02-21 GMT+08:00

Creating an IAM User and Granting Permission to Use IAM Identity Center

You can use Identity and Access Management (IAM) to implement fine-grained permissions control over your IAM Identity Center resources. With IAM, you can:

  • Create IAM users for personnel based on your enterprise's organizational structure. Each IAM user has their own identity credentials for accessing IAM Identity Center resources.
  • Grant users only the permissions required to perform a given task based on their job responsibilities.
  • Entrust an account or a cloud service to perform professional and efficient O&M on your IAM Identity Center resources.

If your account meets your permissions requirements, you can skip this section.

This section describes the procedure for granting permissions (see Figure 1).

Prerequisites

Before granting permissions to user groups, learn about permissions for IAM Identity Center. To grant permissions for other services, learn about all system-defined permissions supported by IAM.

Process Flow

Figure 1 Process of granting IAM Identity Center permissions

  1. On the IAM console, create a user group and grant it permissions (IdentityCenter ReadOnlyAccess as an example).

  2. Create an IAM user and add it to the created user group.
  3. Log in as the created IAM user and verify the IdentityCenter ReadOnlyAccess permissions.