Sync AWS IAM Roles on AWS via Azure
So we have 02 roles on AWS federate to the Azure AD we created (Firstcloudjourney). In this step, we have granted permission to 02 roles but have not synced these Roles through Azure AD.
Roles created:
- S3RoleFull (AmazonS3FullAccess)
- EC2RoleFull (AmazonEC2FullAccess)
- Create User Federating Access, open Identity and Access Management (IAM) interface
- Select Users on the left menu
- Select Add users
- In Add user
- User name, enter
federating
-
In Select AWS access type, select Access key - Programmatic access
-
Select Next:Permissions
- Select Create policy
- In Service select IAM
-
In Specify the actions allowed in IAM, find and select ListRoles
-
Select Next:Tags
- Select Next: Review
- In Review policy
- Name, enter
ListRoles
- Description, enter
ListRoles
- Select Create Policy
- Assign ListRoles to User federating
- Go back to the User tab to continue selecting the Policy for the federating user we were creating in the previous step.
- Select ListRoles
- Select Next: Tags
- Select Next: Review
- Check again and Select Create user
- Create a successful user
You will get the Access key ID and Secret access key in this step. We will use this Keys to declare in Azure AD. You can copy this key to use for the next step.