AWS Identity and Access Management (IAM)

(18)
4.4 out of 5 stars

AWS Identity and Access Management (IAM) enables you to securely control access to AWS services and resources for your users. Using IAM, you can create and manage AWS users and groups, and use permissions to allow and deny their access to AWS resources.

Work for AWS Identity and Access Management (IAM)?

Learning about AWS IAM?

We can help you find the solution that fits you best.

AWS Identity and Access Management (IAM) Features

Authentication Options
Authentication User experience

Process of providing credentials and logging into multiple systems is easy and intuitive for users

95%
(Based on 9 reviews)
Local Access

Controls access to legacy applications, web based applications, network resources and servers.

85%
(Based on 7 reviews)
Partner Access

Controls access to users that are not company employees that are either within the companies local area network or outside the network

85%
(Based on 7 reviews)
Mobile Support

Provides mobile application for required mobile os platform and enables single sign on for native and web based business applications

Not enough data available

Breath of support for target systems

Standard integrations to most common cloud and on premise applications

90%
(Based on 6 reviews)
Supports BYOD users

Enables users to use their own device to access company applications.

88%
(Based on 5 reviews)
Multi-Factor Authentication
Supports Required Access Types

Works with required networking products and applications out of the box such as: VPN, Web, Cloud applications, Local/Remote Desktop

96%
(Based on 8 reviews)
Supports Required Authentication systems

Includes or supports required authentication technologies. Example systems: One Time Passwords, bioMetric, knowledge based, key cards, mobile phone based tokens, etc

95%
(Based on 9 reviews)
Identity Directories
On-premise identity repositories supported

Variety and Quality of integrations (ie Active Directory, LDAP)

92%
(Based on 9 reviews)
Application as profile master

Directory treats the user's profile that is in an application as the ongoing source of truth for that user's profile. Changes to profile in master application drive changes to profiles in other applications.

Not enough data available

Cloud Directory

Provides cloud based directory option that contains all user names and attributes

91%
(Based on 7 reviews)
Provisioning
Self Service Access requests

Users can request access to an application and be automatically provisioned if they meet policy requirements

93%
(Based on 6 reviews)
Smart/Automated Provisioning

Automates account/access rights creation, changes and removals for on-premise and cloud apps

91%
(Based on 7 reviews)
Bi-directional Profile Synchronization

Keeps all profile attributes consistent across applications whether the change is made in the provisioning system or the application

91%
(Based on 5 reviews)
Profile attribute transformation

Transforms profile atributes to the required format for all of the systems being updated

Not enough data available

Role Management

Establish roles that create a set of authentication rights for each user in the role

95%
(Based on 9 reviews)
Policy Management

Enables administrators to create access policies and applies policy controls throughout request and provisioning processes

92%
(Based on 9 reviews)
Access Termination

Terminate access to multiple applications based on dates

89%
(Based on 7 reviews)
Approval Work-flows

Allow business stake-holders/managers to approve or reject requested changes to access via a defined work-flow

Not enough data available

Governance
Identifies and Alerts for Threats

Alerts administrators when inappropriate access occurs

72%
(Based on 8 reviews)
Compliance Audits

Proactively audits access rights against policies

80%
(Based on 6 reviews)
Administration
Administration Console

Provides Administration tools/console that are easy to use and learn for routine maintenance tasks

90%
(Based on 9 reviews)
Ease of set up for target systems

Support for wide variety of cloud and on premise apps to automate provisioning for existing and new applications procured

93%
(Based on 8 reviews)
Bulk Changes

Change users and permissions in bulk

87%
(Based on 8 reviews)
Self Service Password Administration

Users can set, change passwords without interaction from IT staff

94%
(Based on 7 reviews)
Platform
Customization

Supports customizable UI

64%
(Based on 7 reviews)
Reliability

Cloud based service has minimal downtime

93%
(Based on 9 reviews)
Performance/Scalability

Service performs well under significant use and can scale to support large number of users

90%
(Based on 9 reviews)
Security

Vendor follows appropriate security protocols and has appropriate certifications to ensure no breech of confidential data occurs

95%
(Based on 9 reviews)
Logging and Reporting

Provides required reports to manage business. Provides adequate logging to troubleshoot and support auditing.

91%
(Based on 8 reviews)
Federation/SAML support

Can serve as the identity provider to external service providers so that when the user logs into a service, instead of providing credentials to the service provider, the service provider trusts the identity provider to validate the credentials.

88%
(Based on 5 reviews)
Cross Browser support

Support access to browser based applications across required browser types

93%
(Based on 6 reviews)
Reporting

Contains pre-built and custom reporting tools to required to manage business

91%
(Based on 8 reviews)
APIs

Provides appropriate application interfaces to enable custom integrations for unique business requirements

93%
(Based on 8 reviews)