IAM
Space shortcuts

Log in to ASTRA
Manage UW Groups
Manage UW NetID Resources
Manage Certificates
Register/Update Shibboleth SP

IAM in Service Catalog

Access Management
Authentication
Directory Services
UW NetID
UW Directory
Microsoft Infrastructure

Page Tree

Child pages
  • AWS Account First Steps

Versions Compared

Old Version 4

changes.mady.by.user Marc Miles

Saved on

compared with

New Version Current

changes.mady.by.user Marc Miles

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Please follow this guide for configuring UW SSO and 2fa at the UW for your AWS administrators.

...

5. Stop Using the Root Account

Once you have completed the above SSO with 2fa setup for your AWS account administrator(s) it's time to stop using the root account and create a stronger password for the root account.  It's also time to think strategicly about how you will use your AWS account.  There is no right or wrong architecture and this depends on your team size.

...

  • Set a strong password for the root account
  • No longer use the root account and instead use the UW SSO integration described above
  • Have a strategic discussion with your team about what services you need to enable in AWS and how to map UW Groups to least privleaged access in AWS via AWS IAM Roles and AWS IAM Policies.

...

6. Enable Role Based Access Control

Once you have had a conversation with your team about how your account will be used you should now expand your use of UW Groups and AWS IAM Roles.  The following are suggested practicies you may want to adopt.

...