Find answers, ask questions, and connect with our
community around the world.

Home Forums AWS AWS Certified Cloud Practitioner Can you associate AWS Access keys to a IAM Role?

  • Can you associate AWS Access keys to a IAM Role?

     Neeraj Vasudeva updated 1 year ago 2 Members · 5 Posts
    AWS Certified Cloud Practitioner

  • Neeraj Vasudeva

    Member
    April 16, 2023 at 5:15 am

    Can you associate AWS Access keys to a IAM Role?

  • Nikee-TutorialsDojo

    Administrator
    April 17, 2023 at 6:52 pm

    Hi Neeraj,

    Thank you for sending your inquiry.

    To answer your question. Access keys cannot be directly associated with an IAM role. You can, however, create an IAM user first, associate access keys with that user, and then delegate the appropriate permissions to that user. The IAM Role lacks standard long-term credentials such as passwords and access keys. Instead, when you assume a role, it provides temporary security credentials for your role session.

    For more details, you can visit these official documents:

    https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html

    https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_create_for-service.html

    I hope this answers your query. For additional support, feel free to contact us. We are committed in helping you pass your AWS exam on your first attempt!

    Regards,

    Nikee @ Tutorials Dojo

    • Neeraj Vasudeva

      Member
      April 18, 2023 at 12:59 am

      I agree with your verdict that the ‘Access key’ cannot be associated with the Role directly. Having said that one of the question that I recently did using your mock states otherwise. Please refer to below screenshot specifically keyword ‘They’ which i assume implies ‘Access key’

      Do you think, some wording needs to be changed?

      Mock_Dojo

  • Nikee-TutorialsDojo

    Administrator
    April 19, 2023 at 9:02 pm

    Hi Neeraj,

    I understand that the explanation might come slightly off, as access keys cannot be directly associated with an IAM Role. Temporary security credentials are automatically generated when an IAM user assumes a role, which includes an access key, a secret key, and a security token. The IAM user uses these keys to make API calls to other services on behalf of the assumed role. Moreover, it’s important to note that the credentials generated when assuming a role are tied to the role user, not the actual IAM role. This means that the access keys can only be used by the IAM user who has assumed the role and is not valid outside the role session.

    Having that said, our team will review this item and make necessary improvements accordingly.

    Let us know if you need further assistance.

    Regards,

    Nikee @ Tutorials Dojo

    • Neeraj Vasudeva

      Member
      April 20, 2023 at 9:58 am

      Sounds good, thanks for the update & your understanding, appreciate it!

      -Neeraj

Viewing 1 - 3 of 3 replies

Log in to reply.

Original Post
0 of 0 posts June 2018
Now