Identity and Access Managment
AWS – Accounts
- AWS has a vast global infra, which is categorized into Regions and then region into Availability Zones
- AWS offers different services to make use of infra and to solve your application needs
- We as users or consumers use services to create resources. Resource ownership is with us
- AWS Accounts:
- The account with which you registered to aws becomes root account (full permissions)
- This account can add/remove/manage other accounts using IAM (Identity and Access Managent)
- Accessing For users:
- Browser: Console
- Command line: AWS CLI
- SDK (From code): AWS SDK, Boto3
Azure – Accounts
- Azure has a vast global infra, which is categorized into Regions and then some regions into Zones
- AWS offers different services to make use of infra and to solve your application needs
- We as users or consumers use services to create resources. Resource ownership is with us
- Azure Account: The account with which you registered to aws becomes root account (full permissions)
-
Azure Account has subscriptions. Each Subscription is linked to a tenant (which has users,group etc). We can create resources in Resource group which is part of subscription
-
Accessing For users:
- Browser: Portal
- Command line: Azure CLI
- SDK (From code): Azure SDK
