As a best practice, the AWS account requires that you you create a new IAM user with administrator access in order to set up policies, users, and groups rather than use the root user’s credentials.
Before assigning administrator access to an IAM user in the AWS console, you must attest or validate that the user is approved for administrator access in Cloudcheckr.
This procedure will show you how to create an IAM admin user and assign that user to the Administrator’s group.
CREATING AN IAM ADMIN USER AND ADDING USER TO ADMINISTRATOR’S GROUP
Step 1: Log in to your Amazon Web Services Management Console.
Step 2: Load the Identity and Access Management (IAM) Dashboard.
Step 3: Click the Users link on the left side of the console.
Step 2: Click the Add user button.
Step 3: Enter a User Name. We recommend naming the user “Administrator” so you know the purpose for that user.
Step 4: Ensure the “AWS Management Console access” box is selected.
The Console password section displays.
Step 5: Select Custom password, type your new password in the text box, and select the Require password reset checkbox.
Step 6: Click Next: Permissions.
Step 7: Click Add user to group and click Create group.
Step 8: Type the name of the new group and from the policy list, select the AdminstratorAccess checkbox. The new group is now displayed in the list of groups.
Step 9: Click Next: Review.
Step 10: Review your selections and click Create user.
Step 11: Click the Download .csv button to save the security credentials as a CSV export. Click Send Email to provide the user with instructions on how to log in to the AWS Console.
Step 12: Click the Close button on the bottom of the console.