Launch & Maintain > Pre-Launch Checklists > IAM Roles and Users

IAM Roles and Users

AWS Identity and Access Management (IAM) provides access control for your AWS resources. Q-Cloud Protect uses IAM as follows:

  • IAM roles to grant the EC2 instance permission to manage S3 objects and EBS snapshots
  • For AWS Marketplace and GovCloud only: IAM users/groups to grant non-administrator users/groups permission to launch a Q-Cloud Protect EC2 instance

For more information about IAM, see http://docs.aws.amazon.com/IAM/latest/UserGuide/introduction.html

Steps

To define access control for a IAM role or an IAM user/group, you need to take the following steps:

  1. Create IAM policies that define what the entity is allowed to do with your AWS resources.
  2. Assign the policies to the role or user/group.

Topics

For detailed instructions on creating the necessary IAM role and policies, see the following topics:

See Also IconSee Also