• IAM Roles let you delegate permissions to trusted AWS resources
• Like users but for infrastructure elements
• This can let you set up secure password-less access controls
• IAM Policies can be attached to IAM Roles to control access
• Attach IAM roles to your resources that need privileges (EC2 for now)
• These services "automatically" get access based on policies

9 / 25