Can I use Amazon IAM as an authentication method for hosts?

Question

Can I use Amazon IAM as an authentication method for hosts?

Is it possible to use IAM to manage accounts for unix hosts with EC2 using the PAM module, similar to LDAP, NIS, etc. ??

My goal is to be able to centralize host authentication on our EC2 computers without the overhead of setting up a solution with a single sign.

+7

unix amazon-web-services amazon-iam single-sign-on pam

hinder90 Jan 31 '12 at 21:55

source share

2 answers

Eran sandler · Answer 1 · 2012-02-01T13:56:17+0000

AWS IAM is designed to handle access to AWS resources. You can create new users, but the basic authentication that EC2 instances receive is through key pairs that do not match IAM users.

Perhaps you can create your own system that manages IAM users, and also generates a private and public key for their use inside the created instances (maybe even reusing the keys that you get when creating a new user in IAM).

In general, this does not really mean that we will use this path, as I understand it.

Barak · Answer 2 · 2013-11-17T11:49:25+0000

Since you mentioned LDAP, you can use this project:

https://github.com/denismo/aws-iam-ldap-bridge

to synchronize the LDAP server with IAM.

Can I use Amazon IAM as an authentication method for hosts?

More articles: