Amazon Web Services Adds Identity and Access Management Support for CloudFront

Amazon Web Services (AWS) continues to update the capabilities of its cloud technologies, this time delivering Identity and Access Management (IAM) support for AWS CloudFront.

Amazon Web Services (AWS) has added Identity and Access Management (IAM) support for Amazon CloudFront.

AWS Identity and Access Management enables developers to create multiple users and manage the permissions for each of these users within the developer's AWS account. A user is an identity (within the developer's AWS account) with unique security credentials that can be used to access AWS Services. IAM eliminates the need to share passwords or access keys, and makes it easy to enable or disable a user's access as appropriate, the company said. IAM offers developers greater flexibility, control and security when using AWS.

The Amazon Web Services team announced the beta release of the new IAM support on March 10.

Amazon CloudFront is a Web service for content delivery. It integrates with other Amazon Web Services to give developers and businesses an easy way to distribute content to end users with low latency, high data transfer speeds and no commitments, AWS said. And Amazon CloudFront delivers a developer's static and streaming content using a global network of edge locations.

According to a detail page on the AWS site, the AWS Identity and Access Management support enables developers to do the following:

  • Create user identities-Add users (unique identities that can be used to interact with AWS services) to your AWS account. A user can be an individual, system or application requiring access to AWS services.
  • Assign and manage security credentials-Assign security credentials (such as access keys) to each user, and rotate and/or revoke these credentials as desired.
  • Organize users in groups-Create groups to more easily manage permissions for multiple users.
  • Centralized control of user access-Control which operations each user can perform, such as accessing specific AWS service APIs and resources.
  • Conditional user access-Add conditions to control how a user can use AWS, such as their originating IP address, time of day or whether they are using SSL.
  • Single AWS bill-Receive a single bill for the activity of all users within your AWS Account.