IAM stands for Identity and Access Management System
IAM refers to a framework or policies and technologies for ensuring that the proper people in an organization have the appropriate access to technology resources.
AWS Identity and Access Management System (IAM) is a service that helps you securely control access to AWS Resources. You can use IAM to control who is authenticated (Signed-in) and authorized (has permission) to use resources.
When you first create an AWS account, you begin with a Single Sign-in identity that has complete access to all AWS services and Resources in the account.
This identity is called the AWS account "Root User" and is accessed by Signing-in with the email address and Password that you used to create the account.
AWS strongly recommends that you do not use the root user for your everyday task, even the administrative ones.
Use other IAM user accounts to manage the administrative task of your account and securely lock away the root user credentials and use them to perform only a few accounts and Service Management Tasks.
Default Limits in IAM
The IAM user limit is 5000 per AWS account. You can add up to 10 users at one time.
You are also limited to 300 Groups per AWS account.
You are limited to 1000 IAM Roles per AWS account.
The default limit of Managed Policies attached to an IAM Role and IAM user is 10.
An IAM user can be a member of 10 Groups (max)
We can assign 2 access Keys (max) to an IAM user.