O'Reilly logo
live online training icon Live Online training

AWS Access Management

Managing and Securing Access in Amazon Web Services

Michael Shannon

This course focuses on the need for proper access management in Amazon Web Services (AWS). There are various forms of access to explore including administrative and management access to various services, user access to AWS resources, securing API calls, as well as federated access using tools like Cognito. Effective access management is a first line of defense in a solid security strategy to protect public and private resources in the AWS cloud.

What you'll learn-and how you can apply it

  • Using AWS credentials
  • Password Policies
  • Implementing Multi-Factor Authentication (MFA)
  • Using a Bastion (Jump) Host and AppStream 2.0
  • Identity Access Management (IAM)
  • Managed Policies and Roles
  • AWS Single Sign-On
  • Securing API access in AWS
  • AWS Key Management Service

This training course is for you because...

  • You are new to Amazon Web Services and want to implement a solid access management structure from the outset
  • You are an intermediate AWS user or developer who wants to explore the various ways to secure access and mitigate vulnerabilities
  • You want to implement single sign-on and federated access to your AWS resources
  • You want to better understand AWS Key Management Service


  • Have a fundamental knowledge of virtualization and cloud computing
  • Have a basic account with Amazon Web Services in order to implement this knowledge in your own VPC

AWS Cloud Security

About your instructor

  • Michael J. Shannon began his IT career when he transitioned from recording studio engineer to network technician for a major telecommunications company in the early 1990’s. He soon began to focus on security and was one of the first 10 people to attain the HIPAA Certified Security Specialist. Throughout his 30 years in IT he has worked as an employee, contractor, and consultant for numerous companies including Platinum Technologies, Fujitsu, IBM, State Farm, MindSharp, Pearson, and Skillsoft among others. Mr. Shannon has authored several books, training manuals, articles, and CBT modules over the years as well. He has attained the CISSP, CCNP Security, Security+, OpenFAIR, and ITIL Intermediate SO and RCV certifications in the security field. He resides in Abilene Texas.


The timeframes are only estimates and may vary according to how the class is progressing

Segment 1: AWS Credentials, Password Policies, and MFA Length (50 minutes)

Break (length: 10 minutes)

Segment 2: Bastions, IAM, and Managed Policies and Roles Length (50 minutes)

Break (length: 10 minutes)

Segment 3: Single Sign-On, Securing API Access, and Key Management Service (KMS)
Length (60 minutes)