Identity and Access Management Tools

1. Single Sign-On (SSO): SSO is an IAM technology that allows users to log into one of an organization’s domains and then automatically log into a set of other properties. For example, when you connect to Google, you are instantly logged into your Gmail and YouTube accounts. SSO minimizes friction for users because they don’t have to remember multiple credentials for each application.

2. Multi-Factor Authentication (MFA): Implementing MFA is crucial to protect your organization’s data from malicious intrusions, and virtually every IAM platform offers some form of MFA. However, it’s equally crucial to customize MFA with the appropriate level of security. IN B2C contexts, you need to consider UX and try not to create unnecessary friction for users who don’t want to be subjected to heightened scrutiny every time they log in.

3. Anomaly Detection: IAM systems may assist in detecting and mitigating harmful attacks in a variety of ways. IAM solutions identify attacks by analyzing signals such as traffic velocity, identifying login behaviors that deviate from a user’s pattern (such as geolocation and browser), using a compromised password, or using equipment and IP addresses with a negative reputation.

Procedure:

• Step1: Open the following link https://aws.amazon.com/
• Step2: Go to my Account-> AWS management console

• Step3: Click on Create new user AWS account

• Step4: Fill all the details and click on Continue

• Step5: Fill your contact number and home address and click on create account and continue

• Step6: Fill in payment details. Once you do the payment the following screen is showed. Select your role and interest from the dropdown list.

• Step7: Once you click on submit button the following screen is shown.

• Step 8: Click on My Security credential from My Account

• Step 9: now click on users

• Step10: Click on add user. The following screen will be displayed.

• Step 11: Enter user name. Select I want to create an IAM user radio button. Select custom password, then enter the password. Click on next.

• Step 12: A permission options page will be displayed. Click on Next.

• Step 13: Review page will be displayed. It asks for Tags if you want to add any otherwise click on Create User.

• Step 14: The following page will be shown. Here you will be provided with one URL, username and password. Here you can download the user’s credential by clicking on Download.csv file.

• Step 15: In order to login with the user that you have created, either you can copy that link and paste in a browser or you can click on Return to users list and the following screen will be displayed.

• Step 16: click on the user name: khyati. The following screen will be shown. You can see that permission policies(0) as no permission is given.

• Step17: To add permission click on Add Permissions as shown below.

• Step18: Click on create group.

• Step 19: The following page is displayed. Here specify group name.

• Step 20: Select the service that you want to give permission for. Click on

• Step 21: The following page will be displayed.

• Step 22: To view policy summary click on AmazonAppFlowFullAccess. Now click on Next.

• Step 23: Click on Add Permission. The following page will be displayed.

• Step 24: Sign out and login with the user that you have created by using credentials of that user.

• Step25: you will be redirected to home screen of that user.