AWS Identity and Access Management (IAM) Reviews & Product Details


What is AWS Identity and Access Management (IAM)?

AWS Identity and Access Management (IAM) enables you to securely control access to AWS services and resources for your users. Using IAM, you can create and manage AWS users and groups, and use permissions to allow and deny their access to AWS resources.

Write a Review

AWS Identity and Access Management (IAM) Profile Details

AWS Identity and Access Management (IAM) Profile Details

Vendor
AWS
Description
By giving customers more of what they want - low prices, vast selection, and convenience - Amazon continues to grow and evolve as a world-class e-commerce platform.
Company Website
Year Founded
2006
Total Revenue (USD mm)
177,866
HQ Location
Seattle, WA
Ownership
NASDAQ: AMZN
LinkedIn® Page
www.linkedin.com
Employees on LinkedIn®
38,313
Twitter
@awscloud
Twitter Followers
1,754,279
Show moreShow fewer

AWS Identity and Access Management (IAM) Reviews

Filter Reviews
Filter Reviews
Sort by
Ratings
Company Size
User Role
All Industries
Write a Review
1-50 of 63 total AWS IAM reviews

AWS Identity and Access Management (IAM) Reviews

Write a Review
Filter By
Connections
Show reviews that mention
1-50 of 63 total AWS IAM reviews
Copy Review URL
AC
Small-Business
(11-50 employees)
Validated Reviewer
Verified Current User
Review Source
Copy Review URL

"AWS core security feature"

What do you like best?

I like the level of control this gives me to my products in AWS. Giving me control to be as secure or open as I like. One of the best services out there and the fact you set it all up yourself means you know you are secure. Unlike other providers you just have to trust. they have great guides and support to help you and advice on the best configurations.

What do you dislike?

Can be repetitive to setup for each product but worth it as you know it is done correctly. I would not change this as I think it work great and once you learn the first time it take no time at all to set up multiple times.

What problems are you solving with the product? What benefits have you realized?

As a web agency we host big complex platforms that need good security and this allows us to do that giving our clients more confidence that they are protected

Copy Review URL
Software Engineering Manager, Pro Team Services
Sports
Mid-Market
(51-200 employees)
Validated Reviewer
Verified Current User
Review Source
Copy Review URL

"Robust service for managing cloud application access"

What do you like best?

- Granular permission control

- GUI interface is easy enough to use, has room for improvement however

- CLI interface is easy to use

- API interface available to dynamically build roles

- Must have good IAM roles setup to manage application access, as it is the entry point into your cloud system

What do you dislike?

- GUI interface can be simpler. AWS tends to build minimum UI but the ability to CLI and use API interfaces makes IAM a winner still

- Automatic Threat Detection / Access is not built in to IAM. You need to setup your own monitoring using other AWS services to look for access anomalies. If this was built into the service, it would make it a very appealing full stack Identity service.

Recommendations to others considering the product:

Set granular permission groups. From a security and access perspective, the more control you have over users/applications that have access to critical data, the less likelihood of a breach.

What problems are you solving with the product? What benefits have you realized?

We have several web applications and infrastructure on AWS. We use IAM to control application access to our databases and other services. We also use IAM to manage individual user access to our systems. We use various role and groups to isolate permissions and practice the principle of least privileged access.

Copy Review URL
U
Enterprise
(5001-10,000 employees)
Validated Reviewer
Review Source
Copy Review URL

"Simple Access Control"

What do you like best?

I love the fine grain control of access. It makes my admin workflow very simple. It's a really simple feature, but when setting up an account, I love the check list on the home page of IAM that shows you some security best practices, like removing root.

What do you dislike?

I really can't think of anything I dislike about IAM. Sometimes I feel like I end up having to set up the same thing again and again when I'm creating a new account, but anytime I've had to do that I can automate it easily. I really wouldn't want AWS to change the set up process because I think it would make people create holes that shouldn't exist.

Recommendations to others considering the product:

There is no reason (and frankly no way) not to do it. Its a simple tool that you can easily leverage to make your life easier.

What problems are you solving with the product? What benefits have you realized?

Very specific access in a brain dead simple way. Let the people who need to access something access only that thing. If you don't know you need it, you don't have access. Best sort of security.

Copy Review URL
AL
Small-Business
(2-10 employees)
Validated Reviewer
Verified Current User
Review Source
Copy Review URL

"AWS IAM - heart of AWS security"

What do you like best?

AWS Identity and Access Managemen (IAM) is a user and access control service. It'a allows you to create new users, add permissions, manage access keys and many more. You can create groups of users for easy access management. Permissions are granted using policies (document that defines allowed actions). What's really cool is that policie can be attach not only to users but to EC2 instances as well so your application can run certain actions without credentials saved on local drives. AWS provides a lot of preconfigured policies that can be use as a templates. IAM can integrate smoothly with Active Directory and almost all AWS services.

What do you dislike?

It's actually good as it is. I could imagine more friendly GUI for policies generator. It could allows you to chose individual services and fill ARN dynamically. Searching for ARN can be a challenge sometimes.

Recommendations to others considering the product:

Can't use AWS without it.

What problems are you solving with the product? What benefits have you realized?

User and access management.

Copy Review URL
Architekt rozwiązań IT - Departament Rozwoju Infrastruktury
Mid-Market
(51-200 employees)
Validated Reviewer
Review Source
Copy Review URL

"Security by granularity"

What do you like best?

IAM is the heart of AWS security. Main and most important thing is that you can grant privileges on granularity level of API call for certain object in certain region and availability zone . You can control all your users and their privileges from one place.Other great features are: two factor authentication, Active Directory integration, great web interface to manage policies, roles and group and useful predefined policies. Last but not least is feature called "IAM Roles for Amazon EC2" which allow you to assign role to EC2 instance without keeping credentials on it.

What do you dislike?

Sometimes it's hard to find needed permissions for certain task or for AWS own managed services but there's a lot of great documentation and examples on AWS developer forums so with some patience and effort you can always find what you'r looking for. Policy generator could be better organised.

Recommendations to others considering the product:

It's integral part of AWS Services - you have to use it.

What problems are you solving with the product? What benefits have you realized?

User, permission and key management for AWS environment.

Copy Review URL
Software Engineer
Mid-Market
(201-500 employees)
Validated Reviewer
Review Source
Copy Review URL

"Complete access control over your AWS permissions"

What do you like best?

I like the ability to assume roles, grant temporary access keys, and the ability to grant or deny access at fine-grained and customizable levels.

What do you dislike?

There seems to still be some discontinuity in permissions (really talking CloudFormation) for various cloud resources. Some you need to specify names of resources, other complete ARNs, while others don't let you specify specific resources at all.

What problems are you solving with the product? What benefits have you realized?

We've configured ourselves with temporary access keys for all employees, granted after 2-factor authentication, to minimize risk of stolen keys. Other apps and services assume roles with fine-grained permissions so that any intruders to such machines would have minimal rights to do harm or negligent behavior.

Copy Review URL
Senior Software Engineer
E-Learning
Mid-Market
(501-1000 employees)
Validated Reviewer
Verified Current User
Review Source
Copy Review URL

"Powerful access management"

What do you like best?

The basic functionalities are there. It's what you need to use in order to access the other AWS goodies.

CLI support is pretty good.

It's easy to setup really advanced and specific policies, giving your users only the access they need.

MFA support.

Powerful administration tools and fine-grained tools.

What do you dislike?

The UI could use some improvement. It's often hard to find things.

Policies are powerful but unnecessarily complicated - the same could be accomplished with a UI, leaving less room for mistakes.

You can potentially do actions which don't make sense - if I had a penny for every time somebody set up an account for me, just to have them reconfigure permissions later...

Recommendations to others considering the product:

Set up finely grained permissions, pay extra attentions to your policies.

What problems are you solving with the product? What benefits have you realized?

Managing accounts and permissions, accessing your aws account.

Copy Review URL
A
Small-Business
(11-50 employees)
Validated Reviewer
Verified Current User
Review Source
Copy Review URL

"AWS IAM for access control"

What do you like best?

The ability to put policies that limit a wide range of access to the AWS console. It allows us to grant people access to view, but only a single account can make changes.

What do you dislike?

Currently, i am very happy with the product and don't have any negative feedback.

Recommendations to others considering the product:

Definitely try it. You can get great support from AWS on how to structure your policies for IAM users.

What problems are you solving with the product? What benefits have you realized?

We solved the problem of too many people having access to make changes to the systems. We have realized the benefit of read only access for most people.

Copy Review URL
Intership Student
Construction
Enterprise
(10,001+ employees)
Validated Reviewer
Review Source
Copy Review URL

"This is amazing web service!"

What do you like best?

I really enjoy using this amazon service. I started in the service less than 1 week ago and I can already use the interface and the tools without problem. I have already understood how it was implemented and I am making improvements in the EC2, S3 and IAM services.

What do you dislike?

To date, I have not found any negative points in this servisse.

Recommendations to others considering the product:

I would recommend more beginner video training.

What problems are you solving with the product? What benefits have you realized?

It allowed cost savings and ease of implementation. It's a 100% guaranteed service!

Copy Review URL
Software Engineer
Enterprise
(10,001+ employees)
Validated Reviewer
Verified Current User
Review Source
Copy Review URL

"IAM covers all AWS security thoroughly and logically"

What do you like best?

Simple, straightforward solution that's highly configurable

What do you dislike?

There are not a lot of good diagrams explaining interactions between permissions objects

Recommendations to others considering the product:

If you're inside of an AWS account you absolutely have to set up IAM or you're just wasting an opportunity for maintaining good security.

What problems are you solving with the product? What benefits have you realized?

Controlling permissions inside of our AWS accounts both to prevent outside access and to control internal access to follow a least privilege model.

Copy Review URL
Manager of IT and Security
Small-Business
(11-50 employees)
Validated Reviewer
Verified Current User
Review Source
Copy Review URL

"Granularity"

What do you like best?

The level of granularity you can get on "MOST" resources is absolutely fantastic from a security standpoint.

What do you dislike?

Sometimes it's hard to troubleshoot what is blocking or not blocking what you think it should be.

What problems are you solving with the product? What benefits have you realized?

Providing least privileged access to all users who enter our AWS environment.

Copy Review URL
A
Enterprise
(1001-5000 employees)
Validated Reviewer
Review Source
Copy Review URL

"Core Service for all things AWS"

What do you like best?

The integration with all existing services to allow/deny access to all other resources is fanastic. Because all the IAM policies built the same once you learn the service you can use it everywhere.

What do you dislike?

With the introduction of newer features like the boundary policies it seems that organizational features weren't fully thought out. They should allow multiple boundary policies to be applied. One for the organizational level and one for the account.

Recommendations to others considering the product:

Considering using boundary policies to control what level of access users in the account to handle. In environments with potentially 100's of accounts this is paramount. However, organizations that only have a handful of accounts would still benefit from this feature.

What problems are you solving with the product? What benefits have you realized?

Access control for developers and services

Copy Review URL
C
Validated Reviewer
Review Source
Copy Review URL

"Identity across AWS"

What do you like best?

It simplifies AWS account management for users with roles and policies. It helps us across multiple AWS accounts giving RABC accesses. Helps in EC2 instances having secured access to other AWS services using EC2 roles. What I find most useful is enablement with Multifactor Autentication.

What do you dislike?

There is nothing much to dislike with this service but could be said more of enhancements. I would like to have more feature rich services while intergarting it with Directory services outside of Microsoft Active Directory. More enhanced integration with existing Active Directory role based access controls.

Recommendations to others considering the product:

It is a must use if using AWS.

What problems are you solving with the product? What benefits have you realized?

It has greatly helped us in limiting our accesses on AWS services.

Copy Review URL
Software Engineer
Enterprise
(10,001+ employees)
Validated Reviewer
Review Source
Copy Review URL

"Easy to configure, but badly documented"

What do you like best?

Very easy to organize user, groups and permissions. Easy to apply version control. Very well structured

What do you dislike?

The documentation is hard to find. I would be great if there was a more readly avaialable list of actions and resources you could use for easch statement. Many times I find myself trying to figure out what action requires what resources to fix warnings in the console.

What problems are you solving with the product? What benefits have you realized?

Game microservices. Straightforward code to infrastructure.

Copy Review URL
solutions architect
Mid-Market
(201-500 employees)
Validated Reviewer
Review Source
Copy Review URL

"Centralized User Managment"

What do you like best?

I really like how granular you can get with the permissions within AWS for each user. The ability to limit users to very specific tasks helps greatly with security.

What do you dislike?

The granularity of the IAM permissions can be daunting and requires quite a bit of research to ensure that you are assigning the correct permissions to users.

What problems are you solving with the product? What benefits have you realized?

IAM provides a centralized location to manage users for all AWS services.

Copy Review URL
Compute and Analytics Manager
Mid-Market
(501-1000 employees)
Validated Reviewer
Review Source
Copy Review URL

"Identity Management"

What do you like best?

AWS IAM touches everything we use in AWS. The fined tuned control is essential for us.

What do you dislike?

Seeing an overview of all the security configurations in my experience is difficult. There are 3rd parties out there that can do a good job, but it would be nice to have a better overview dashboard.

What problems are you solving with the product? What benefits have you realized?

We cross-cut multiple corporate organizational accounts and need to control access to a manifold of resources.

Copy Review URL
A
Small-Business
(11-50 employees)
Validated Reviewer
Verified Current User
Review Source
Copy Review URL

"IAM is useful and easy to use"

What do you like best?

The separation of roles and policies allows you to create multiple configurations

What do you dislike?

the sheer number of provided aws policies can be daunting. an index of the policies and what they provide would be helpful

What problems are you solving with the product? What benefits have you realized?

we use iam for authentication and for enabling/disabling access to sections/functions of AWS. We can create a role that is only allowed to do one specific function, which increases security

Copy Review URL
AP
Enterprise
(10,001+ employees)
Validated Reviewer
Verified Current User
Review Source
Copy Review URL

"Good service offered by AWS"

What do you like best?

The different levels that we can define be it the roles, users and policies.

Every department can have its own roles/policies which is great.

What do you dislike?

Everything seems good till now, no drawbacks.

Recommendations to others considering the product:

GOod for access contirl

What problems are you solving with the product? What benefits have you realized?

We are setting up different types of roles for different departments/business groups in our company.

Some times a specific business group just need access to for example a S3 bucket so that can be done easily via IAM

Copy Review URL
A
Enterprise
(10,001+ employees)
Validated Reviewer
Review Source
Copy Review URL

"Critical for any scalable use of AWS"

What do you like best?

IAM gives you incredible control over AAA in AWS.

What do you dislike?

It is very difficult to figure out how to use it, particularly for policy assignment and cross-account access, and the documentation is not particularly intuitive.

Recommendations to others considering the product:

Read the documentation and have a test account to play with. And plenty of patience.

What problems are you solving with the product? What benefits have you realized?

We are doing federated access with Active Directory, as well as managing users across multiple AWS accounts. This has allowed us to accomplish both of these objectives, including SSO, without having to create and manage users in each of the accounts.

Copy Review URL
U
Mid-Market
(501-1000 employees)
Validated Reviewer
Review Source
Copy Review URL

"Seemlessly give access to services to resources"

What do you like best?

The creation of profiles that can be used by resources as the system scales up and down i think is a big win

What do you dislike?

sometimes it is not as easy to narrow down the specific access required, i use the console to look for the different permissions and is takes a while to identify. Also, there is an effort in our company to standarize all the access from the employees so it is a challenge

What problems are you solving with the product? What benefits have you realized?

Ability for resources that can scale up and down to access the specific services without having to manage users, passwords

Copy Review URL
Sr. DevOps Engineer
Mid-Market
(51-200 employees)
Validated Reviewer
Review Source
Copy Review URL

"Great controls, though a little confusing at first. "

What do you like best?

Extremely fine-grained controls to handle access at every level imagineable.

What do you dislike?

Right now a user can not add MFA without having access to IAM. This requires an admin to handle this in-person (or over a video call). Also physical access tokens are brand new to IAM and not fully implemented yet.

What problems are you solving with the product? What benefits have you realized?

Controlling permissions for users and infrastructure.

Copy Review URL
Principal IT Architect
Enterprise
(10,001+ employees)
Validated Reviewer
Review Source
Copy Review URL

"Review at AWS Reinvent"

What do you like best?

I like the ability to control access with fine grain ablities. This service allows a large range of ways to control access. New features are getting better and beter like service control policies and tag permissions!

What do you dislike?

reuqires a learning curve to undeerstand how p[olicies work.

What problems are you solving with the product? What benefits have you realized?

The ablitiy to strictly control access to resources in the cloud

Copy Review URL
Security Engineer
Enterprise
(1001-5000 employees)
Validated Reviewer
Review Source
Copy Review URL

"So many roles, so little time. "

What do you like best?

The granularity is awesome from a secuirty perspective. Also the ability to assume roles into another account will allow for scalability once it's setup correctly.

What do you dislike?

Our environment was not setup to best practices, or at least we didn't know best practices at the time of setup.

What problems are you solving with the product? What benefits have you realized?

Scalibility and speed of access for onboarded techs.

Copy Review URL
U
Enterprise
(1001-5000 employees)
Validated Reviewer
Review Source
Copy Review URL

"Access Management Managed"

What do you like best?

The fact that it's easy to give and get access to the the necessary people simply and completely without the burden of on-prem systems It's easy and complete. It has the best way of telling you that you are doing it right.

What do you dislike?

The fact that the integrations to curent Azure AD creates challenges around the "How". We don't have a lot of users with experience and the learning curve, though not difficult, does play a factor in success.

What problems are you solving with the product? What benefits have you realized?

Ability to scale up new contractors and partners quickly with access managed intelligently.

Copy Review URL
UC
Validated Reviewer
Review Source
Copy Review URL

"easy to understand and clean service"

What do you like best?

A very clean and straightforward service for account management. I can quickly make a limited to very limited access account for a developer or someone totally new and unaware for a quick QA run or any other check/test they may want to run.

What do you dislike?

Could have more explanation on steps while creating new roles and accounts, rest all is fine. Maybe bring in the new console for this service instead of S3.

Recommendations to others considering the product:

use it to the most!

What problems are you solving with the product? What benefits have you realized?

using AWS for different users like admin, testers and developers. helps keep different services untouched by testers and other developers I don't want to give access to or maybe avoid giving access to billing details

Copy Review URL
A
Mid-Market
(51-200 employees)
Validated Reviewer
Review Source
Copy Review URL

"Super granular, could use better auditing tools."

What do you like best?

I like how granular the permissions policies are -- typically if we want to restrict or allow access to an API or service in a specific way, we can figure it out with IAM policies.

What do you dislike?

We've struggled to find good processes to audit usage of each permission statement. There are some tools to help with this, but they;re very broad and per-service instead of per-permission.

What problems are you solving with the product? What benefits have you realized?

We use IAM to grant engineer access to AWS services. We've used it to use the "least needed" permissions strategy.

Copy Review URL
Senior Storage Engineer
Mid-Market
(501-1000 employees)
Validated Reviewer
Review Source
Copy Review URL

"Great management of users and groups"

What do you like best?

Ability to manage users and groups within AWS.

What do you dislike?

Testing to make sure credentials are good to go, but once you have set them, it is very ease to manage.

Recommendations to others considering the product:

Must have and used to for AWS services implementation.

What problems are you solving with the product? What benefits have you realized?

Group and user access management is better managed.

Copy Review URL
CM
Enterprise
(5001-10,000 employees)
Validated Reviewer
Review Source
Copy Review URL
Business partner of the vendor or vendor's competitor, not included in G2 scores.

"Great auth service for AWS services"

What do you like best?

Integrates well with many SAML based auth and allows cross integration to other AWS services from SAML.

What do you dislike?

Can be a monster to setup properly, principally when implementing a landing zone across multiple accounts. It is not clear what is the guidance from AWS on same things related to landing zone. Would love to see this fully integrated into lambda access to RDS using IAM roles only.

What problems are you solving with the product? What benefits have you realized?

It resolves many of IT compliance and security problems which empowers business to operate faster.

Copy Review URL
A
Small-Business
(2-10 employees)
Validated Reviewer
Verified Current User
Review Source
Copy Review URL

"Powerful but Tricky"

What do you like best?

Gives you total control of your AWS services and permissions. Extremely useful for a startup or large company that has a fluctuation of employees because it allows you to quickly give certain permissions to certain users.

What do you dislike?

Can be conceptually complicated and often need to "code" policies. There can be an easier process.

What problems are you solving with the product? What benefits have you realized?

Sometimes you don't want to give your employees total access to every service, from a security perspective and an expertise perspective. IAM allows you to fix this problem.

Copy Review URL
Application Development Engineer
Internet
Enterprise
(10,001+ employees)
Validated Reviewer
Review Source
Copy Review URL
Business partner of the vendor or vendor's competitor, not included in G2 scores.

"One of the best IAMs ever used"

What do you like best?

I like AWS Security, and how easy to delegate control and integrate with 3rd party software or web-application

What do you dislike?

For newbies, it is a little bit difficult navigate through its UI because of its structure

Recommendations to others considering the product:

Suggest to use UI to newbie users/admins to get better feedback

What problems are you solving with the product? What benefits have you realized?

It helped us to control and manager our users

Copy Review URL
A
Enterprise
(5001-10,000 employees)
Validated Reviewer
Review Source
Copy Review URL

"AWS IAM"

What do you like best?

Easy to start, intuitive. Covers all manner of situations. Easy to show Security what's going on.

What do you dislike?

Can get out of hand quickly with scaling if not done right from the start. For folks who are new to the Cloud, having to undo all that work can be frustrating.

Recommendations to others considering the product:

There's not much choice with regard to user management in AWS, so, you know, go hog wild.

What problems are you solving with the product? What benefits have you realized?

Presenting the Cloud to Audit/Security for sign-off has become much easier.

Copy Review URL
U
Enterprise
(1001-5000 employees)
Validated Reviewer
Review Source
Copy Review URL

"Great tool for managing multiple user accesses to different environments"

What do you like best?

The interactive UI which allows the admin to control the privileges for employees based on their grade. Allows easy maintenance of the same across staging and production environments.

What do you dislike?

nothing in particular. I like the intuitive way in which the UI is designed.

What problems are you solving with the product? What benefits have you realized?

It addresses the access issues for all employees in an organisation. We use it for assigning roles for employees, giving them access to staging environments based on their grade.

Copy Review URL
AI
Mid-Market
(501-1000 employees)
Validated Reviewer
Review Source
Copy Review URL
Business partner of the vendor or vendor's competitor, not included in G2 scores.

"Heart of Security"

What do you like best?

The best parts are roles, federation, SSO capabilities.

What do you dislike?

Its moving in the right direction, nothing to dislike about the service.

Recommendations to others considering the product:

Nothing at this moment. Its a great product with lot of features.

What problems are you solving with the product? What benefits have you realized?

With Federation and SSO capabilities, we are able to provide access to AWS services for our end users by leveraging their existing credentials. This also helps when someone leaves the organization, for pulling out their access.

Copy Review URL
data engineer
Enterprise
(1001-5000 employees)
Validated Reviewer
Review Source
Copy Review URL

"very good service"

What do you like best?

the roles and user policies are the best

What do you dislike?

i like everything about it and there is nothing i don't like

What problems are you solving with the product? What benefits have you realized?

its easy to grant access and control the authorization