• IAM = Identity and Access Management
• The AWS service where you create users and manage what they can do
• Can create as many as you want (within reason) for free
• Users are entities who can work with your AWS account
• Not for managing users in an application you build
• Users can be organized into groups with shared permissions
• They have no permissions by default (least privilege)

2 / 25