What Is a Federated Identity?
IAM (abbreviation for Identity and Access Management), or "identity and access management", has functions such as single sign-on, strong authentication management, centralized authorization and audit based on policies, dynamic authorization, and enterprise manageability.
- AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources. You can use IAM to control which user is authenticated (logged in) and authorized (with permissions) to use resources.
- When you first create an AWS account, you initially use a single sign-on identity with full access to all AWS services and resources in the account. This identity is called the AWS account root user and can be obtained by logging in with the email address and password you used when you created your account. It is highly recommended that you do not use the root user for daily tasks, even administrative tasks. Follow best practices for using the root user only to create the first IAM user. Then keep the root user credentials in a safe place and use them only for a few account and service management tasks.
- IAM is a comprehensive set of tools for establishing and maintaining digital identities and providing effective and secure access to IT resources
- IAM provides you with the following features:
- Single sign-on (SSO)
- By working across many different web applications,
- IAM was originally a unified account management and access control system of Beijing Proceeds Technology Co., Ltd. (PAS). After communication with China Mobile, IAM added account management to the original 3A (authentication, authorization, and audit) security model. 4A solution. At present, the few domestic manufacturers with the ability to implement 4A solutions (IAM) are China Taiyue, AsiaInfo, Procem Technology, and Yiyang Xintong [2] .