Code Generation for APIs
Program the world. Generate code in less than 10 minutes.
This feature isn't available on your account.
Want to account?
Back to Kosmos

Choreos

Public
Private

You have no favorites... yet!

Your Private APIs Here

Enable digital transformation at your organization.

Learn More

Library . Amazon . IAM

IAM stands for "Identity and Access Management" and enables AWS customers to manage users and user permissions under their AWS account.

  • Setup Instructions

    • To use the Choreos in this bundle, you'll need an Amazon AWS Secret Key and an Amazon AWS Access Key, which are used to authenticate your account. If you already have an Amazon AWS account, you can find both keys by logging into the AWS Console and going to the Security Credentials area. If you don't have an Amazon account, you can sign up for one here.

  • glossary
    • MarkerUsed in some of the Amazon IAM Choreos that return lists of items. Use this parameter only when paginating results, and only in a subsequent request after you've received a response where the results are truncated (the item IsTruncated is set to true). Set it to the value of the Marker element in the response you just received to get the next page of results.
    • Instance ProfileAn instance profile is a container for a role. To associate a role to an Amazon EC2 instance, you must use the instance profile name. If you use the AWS Management Console to create and manage roles, instance profiles are automatically managed for you. If you use the IAM API or CLI to create and manage roles, you must create instance profiles for each role. A role can be associated with many instance profiles, but an instance profile can be associated with only one role.
    • PolicyA policy is a document that provides a formal statement of one or more permissions. With IAM, you can assign a policy to an entity, permissions stated in the policy. You can assign multiple policies to an entity. If you want to assign the same policy to multiple users, we recommend you put the users in a group and assign the policy to the group.
    • RolesIAM roles allow you to delegate access to users or services that normally don't have access to your organization's AWS resources. IAM users or AWS services can assume a role to obtain temporary security credentials that can be used to make AWS API calls. Consequently, you don't have to share long-term credentials or define permissions for each entity that requires access to a resource.
  • Related Links
  • Choreos

    • Amazon.IAM.AddRoleToInstanceProfile

      Adds the specified role to the specified instance profile.

    • Amazon.IAM.AddUserToGroup

      Adds a specified user to a specified group.

    • Amazon.IAM.ChangePassword

      Allows the authenticating user to change their password.

    • Amazon.IAM.CreateAccessKey

      Creates a new AWS Secret Access Key and corresponding AWS Access Key ID for a specified user.

    • Amazon.IAM.CreateAccountAlias

      Creates an alias for your AWS account.

    • Amazon.IAM.CreateGroup

      Creates a new group in your AWS account.

    • Amazon.IAM.CreateInstanceProfile

      Creates a new instance profile.

    • Amazon.IAM.CreateLoginProfile

      Creates a password for the specified user, which gives the user the ability to access AWS services through the AWS Management Console.

    • Amazon.IAM.CreateUser

      Creates a new user for your AWS account.

    • Amazon.IAM.CreateVirtualMFADevice

      Creates a new virtual MFA device for the AWS account.

    • Amazon.IAM.DeactivateMFADevice

      Deactivates the specified MFA device and removes it from association with the user name for which it was originally enabled.

    • Amazon.IAM.DeleteAccessKey

      Deletes the access key associated with the specified user.

    • Amazon.IAM.DeleteAccountAlias

      Deletes the specified AWS account alias.

    • Amazon.IAM.DeleteAccountPasswordPolicy

      Deletes the password policy for the AWS account.

    • Amazon.IAM.DeleteGroup

      Deletes a specified group.

    • Amazon.IAM.DeleteGroupPolicy

      Deletes the specified policy that is associated with the specified group.

    • Amazon.IAM.DeleteInstanceProfile

      Deletes the specified instance profile.

    • Amazon.IAM.DeleteLoginProfile

      Deletes the password for the specified user, which terminates the user's ability to access AWS services through the AWS Management Console.

    • Amazon.IAM.DeleteRole

      Deletes the specified role.

    • Amazon.IAM.DeleteRolePolicy

      Deletes the specified policy associated with the specified role.

    • Amazon.IAM.DeleteServerCertificate

      Deletes the specified server certificate.

    • Amazon.IAM.DeleteSigningCertificate

      Deletes the specified signing certificate associated with the specified user.

    • Amazon.IAM.DeleteUser

      Deletes a specified user. The user must not belong to any groups, have any keys or signing certificates, or have any attached policies.

    • Amazon.IAM.DeleteUserPolicy

      Deletes the specified policy associated with the specified user.

    • Amazon.IAM.DeleteVirtualMFADevice

      Deletes a virtual MFA device. You must deactivate a user's virtual MFA device before you can delete it.

    • Amazon.IAM.EnableMFADevice

      Enables the specified MFA device and associates it with the specified user name. When enabled, the MFA device is required for every subsequent login by the user name associated with the device.

    • Amazon.IAM.GetAccountPasswordPolicy

      Retrieves the password policy for the AWS account.

    • Amazon.IAM.GetAccountSummary

      Retrieves account level information about account entity usage and IAM quotas.

    • Amazon.IAM.GetGroup

      Returns a list of users that are in the specified group.

    • Amazon.IAM.GetGroupPolicy

      Retrieves the specified policy document for the specified group.

    • Amazon.IAM.GetInstanceProfile

      Retrieves information about the specified instance profile, including the instance profile's path, ARN, and RoleId.

    • Amazon.IAM.GetLoginProfile

      Retrieves the user name and password create date for the specified user.

    • Amazon.IAM.GetRole

      Retrieves information about the specified role, including the role's path, ARN, RoleId, and the policy granting permission to EC2 to assume the role.

    • Amazon.IAM.GetRolePolicy

      Retrieves the specified policy document for the specified role.

    • Amazon.IAM.GetServerCertificate

      Retrieves information about the specified server certificate.

    • Amazon.IAM.GetUser

      Retrieves details about a specified user, including the user's path, GUID, and ARN.

    • Amazon.IAM.GetUserPolicy

      Retrieves the specified policy document for the specified user.

    • Amazon.IAM.ListAccessKeys

      Returns information about the Access Key IDs associated with the specified user.

    • Amazon.IAM.ListAccountAliases

      Lists the account aliases associated with the account.

    • Amazon.IAM.ListGroupPolicies

      Lists the names of the policies associated with the specified group.

    • Amazon.IAM.ListGroups

      Returns a list of groups and allows you to filter the results with a specific path prefix.

    • Amazon.IAM.ListGroupsForUser

      Lists the groups the specified user belongs to.

    • Amazon.IAM.ListInstanceProfiles

      Lists the instance profiles that have the specified path prefix.

    • Amazon.IAM.ListInstanceProfilesForRole

      Lists the names of the policies associated with the specified role.

    • Amazon.IAM.ListMFADevices

      Lists the MFA devices. If the request includes the user name, then this action lists all the MFA devices associated with the specified user name. If you do not specify a user name, IAM determines the user name implicitly based on the AWS Access Key ID signing the request.

    • Amazon.IAM.ListRolePolicies

      Lists the names of the policies associated with the specified role.

    • Amazon.IAM.ListRoles

      Lists the roles that have the specified path prefix. If there are none, the action returns an empty list.

    • Amazon.IAM.ListServerCertificates

      Lists the server certificates that have the specified path prefix. If none exist, the action returns an empty list.

    • Amazon.IAM.ListSigningCertificates

      Returns information about the signing certificates associated with the specified user. If there are none, the action returns an empty list.

    • Amazon.IAM.ListUserPolicies

      Lists the names of the policies associated with the specified user.

    • Amazon.IAM.ListUsers

      Lists the users that have the specified path prefix. If there are none, the action returns an empty list.

    • Amazon.IAM.ListVirtualMFADevices

      Lists the virtual MFA devices under the AWS account.

    • Amazon.IAM.PutGroupPolicy

      Adds or updates a policy document associated with a specified group.

    • Amazon.IAM.PutRolePolicy

      Adds or updates a policy document associated with a specified role.

    • Amazon.IAM.PutUserPolicy

      Adds or updates a policy document associated with a specified user.

    • Amazon.IAM.RemoveRoleFromInstanceProfile

      Removes the specified Role from the specified Instance Profile.

    • Amazon.IAM.RemoveUserFromGroup

      Removes the specified user from the specified group.

    • Amazon.IAM.ResyncMFADevice

      Synchronizes the specified MFA device with AWS servers.

    • Amazon.IAM.UpdateAccessKey

      Changes the status of the specified access key from Active to Inactive, or vice versa. This action can be used to disable a user's key as part of a key rotation workflow.

    • Amazon.IAM.UpdateAccountPasswordPolicy

      Updates the password policy settings for the account.

    • Amazon.IAM.UpdateGroup

      Updates the name and/or the path of a specified group.

    • Amazon.IAM.UpdateLoginProfile

      Changes the password for the specified user.

    • Amazon.IAM.UpdateServerCertificate

      Updates the name and/or the path of the specified server certificate.

    • Amazon.IAM.UpdateSigningCertificate

      Changes the status of the specified signing certificate from active to disabled, or vice versa. This action can be used to disable a user's signing certificate as part of a certificate rotation workflow.

    • Amazon.IAM.UpdateUser

      Updates the name and/or the path of a specified user.

    • Amazon.IAM.UploadServerCertificate

      Uploads a server certificate entity for the AWS account. The server certificate entity includes a public key certificate, a private key, and an optional certificate chain, which should all be PEM-encoded.

    • Amazon.IAM.UploadSigningCertificate

      Uploads an X.509 signing certificate and associates it with the specified user.

    • Welcome to Temboo
    Program the world. Generate code in less than 10 minutes.
    What type of code would you like to generate?
    Arduino
    Texas Instruments
    Samsung
    C#
    Java
    JavaScript
    Node.js
    PHP
    Processing
    Python
    REST API
    Ruby
    iOS
    Android