Please enable JavaScript.
Coggle requires JavaScript to display documents.
AWS system architect - Coggle Diagram
AWS system architect
Security and IAM
Users
long-term credentials
Groups
Roles
EC2 roles
service roles
cross-domain rols
users can assume role
assuming means getting all permissions
STS
temp credentials
Policies
kinds
user-managed
inline
resource-based policies
can be only attached to resource
AWS managed
schema
effect
explicit deny over allow
action
resource
variables allowed
condition
type-specific
attaches to role
IAM permission boundaries
max permissions user can get
Identity services
Compute and LB
Storage
Caching
Databases
Service communication
Data engineering
Monitoring
Deployment and instance management
Cost control
Migration
VPC
Machine Learning