Skip to content

divine-maxwell/aws-iam-policy-test

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

4 Commits
screenshots
screenshots
Β 
Β 
.DS_Store
.DS_Store
Β 
Β 
README.md
README.md
Β 
Β 

Repository files navigation

<<<<<<< HEAD

Beginner IAM Project – AWS IAM Group Policy with Least Privilege Enforcement

βœ… Created a group called "Testers"
βœ… Attached the AmazonS3ReadOnlyAccess policy
βœ… Tested with two users to verify read-only S3 access
βœ… Verified policy blocks upload/delete actions

Tech Used: AWS IAM, S3, Managed Policies
Skills: Identity-based access control, Least Privilege, IAM Group Permissions

IAM Group Policy Assignment & Least Privilege Enforcement

=======

πŸ›‘οΈ AWS IAM Policy Test Project

65a4388 (Updated README with screenshot table and added images)

πŸ“Œ Project Overview

This project demonstrates how to assign group-based permissions using IAM policies and verify Least Privilege through hands-on testing.
The goal was to ensure IAM users only perform actions they’re explicitly allowed toβ€”nothing more, nothing less.

πŸ› οΈ What I Did

  1. Created a group named Testers.
  2. Attached the managed policy AmazonS3ReadOnlyAccess.
  3. Added IAM users (Tomiwa.Addict, Israel.Grade) to the group.
  4. Logged in as each user and tested access to Amazon S3:
    • βœ… Able to view and list S3 buckets
    • ❌ Unable to upload or delete files

πŸ§ͺ Test Results

Action Tested Result Screenshot
View S3 Buckets βœ… Success πŸ“Έ View Screenshot
Upload/Delete Files ❌ Denied πŸ“Έ View Screenshot
IAM Group Creation βœ… Done πŸ“Έ View Screenshot
IAM User Listing βœ… Done πŸ“Έ View Screenshot
Bucket Test File βœ… Visible πŸ“Έ View Screenshot
S3 Bucket Itself βœ… Accessible πŸ“Έ View Screenshot

πŸ–ΌοΈ Screenshot Previews

Below are direct clickable thumbnail previews of key screenshots:

Action Preview
IAM Group Setup
S3 Bucket Access
Read-Only Access
Access Denied (Upload)
Users in Group
Test File View

🧰 Tools & Services Used

  • AWS IAM (Users, Groups, Policies)
  • Amazon S3 (for access testing)
  • AWS Console
  • IAM Managed Policy: AmazonS3ReadOnlyAccess

πŸ” Security Concepts Practiced

  • IAM Group-based permission assignment
  • Managed policy attachment
  • Access testing (allowed vs denied)
  • Principle of Least Privilege
  • Identity-based access control (IBAC)

πŸ“ Project Structure

aws-iam-policy-test/ β”œβ”€β”€ README.md β”œβ”€β”€ screenshots/ β”‚ β”œβ”€β”€ s3-access-denied01.png β”‚ β”œβ”€β”€ s3-bucket.png β”‚ β”œβ”€β”€ s3-readonly-access.png β”‚ β”œβ”€β”€ s3-testfile.png β”‚ β”œβ”€β”€ s3-user-groups01.png β”‚ └── s3-users.JPEG

βœ… This project highlights my practical understanding of IAM security controls and least privilege enforcement in AWS.

About

Beginner IAM project testing least privilege enforcement using AmazonS3ReadOnlyAccess policy

Topics

aws beginner-project iam group-policy cloud-security least-privilege

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published