How to Easily Create and Manage IAM User Groups in AWS
Step-by-Step Guide to Creating and Managing IAM User Groups in AWS
Adding users to a User Group
Open the AWS Management Console and navigate to the Identity and Access Management (IAM).
Create 2-3 users, you can use Creating And Assigning Policy to IAM Users.
Click on User groups from the left navigation panel.
Click Create group.
Write a suitable name.
You can select all the users you want to add to this group.
Search and check the policies you want to assign (Eg. AmazonEC2ReadOnlyAccess).
Click Create user group.
Now open the user and go to Permissions, you can check the policies given under Permissions policies.
Adding users to multiple User Groups
Create another user group and add the same users that were added in the previous user group.
Search and select some other policies from the previous one (Eg. AmazonEC2ReadOnlyAccess).
Now open the user and go to Permissions, you can check the policies from different user groups given under Permissions policies.
Giving permissions to a specific user
Open the user.
Under Permissions, click Add permissions -> Add permissions.
Select Attach policies directly.
Search and select any policy (Eg. AmazonDynamoDBFullAccess).
Click Next -> Add permissions.
To check, open the user under Permissions and check the newly added permission.
Copy permission to a user
Create a new user.
Open this user.
Under Permissions, click Add permissions -> Add permissions.
Click Copy permissions.
Select any user whose permissions are needed to be copied.
Click Next -> Add permissions.
Now open this user, and click Permissions, under Permissions policies you can check all the permissions given to this user which were given to the user from which the permissions are copied.