[Updated 202010] Identity and Access Management (IAM) Basics

Identity and Access Management (IAM) is a core AWS service you will use as a Solutions Architect.

IAM is what allows additional identities to be created within an AWS account - identities which can be given restricted levels of access.

IAM identities start with no permissions on an AWS Account, but can be granted permissions (almost) up to those held by the Account Root User.