Log in
Request Support

Allow AWS IAM User to Create Access Keys and Upload SSH public keys

  • Blog
  • Allow AWS IAM User to Create Access Keys and Upload SSH public keys

This short tutorial will show AWS Cloud Administrators how to create an IAM policy that gives cloud users permissions to generate their own Access Keys and SSH Keys. We will also include permission to change password without contacting Admin for such basic requests.

For this you need to create an IAM policy under IAM > Policies > Create policy.

Here is the policy json code to use.

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "iam:ListUsers",
                "iam:GetAccountPasswordPolicy"
            ],
            "Resource": "*"
        },
        {
            "Effect": "Allow",
            "Action": [
                "iam:*AccessKey*",
                "iam:*SSHPublicKey*",
                "iam:ChangePassword",
                "iam:GetUser",
                "iam:*ServiceSpecificCredential*",
                "iam:*SigningCertificate*"
            ],
            "Resource": [
                "arn:aws:iam::*:user/${aws:username}"
            ]
        }
    ]
}

See below screenshot of the same.

Review the policy and agree to create if all looks good.

You can then attach the policy to a user group or directly to an IAM user account.

You can now ask the users in a group attached to policy if they’re able to generate Access and SSH keys.

Similar guides:

Your IT Journey Starts Here!

Ready to level up your IT skills? Our new eLearning platform is coming soon to help you master the latest technologies.

  • Learn at your own pace
  • Access expert-led premium content
  • Gain in-demand IT certification tips and practice questions
  • Master essential skills: Linux, Scripting and Automation, Kubernetes, Cloud, IaC, GitOps, DevOps, Cybersecurity, and more.

Be the first to know when we launch! Join our waitlist now.

Join Waiting List
Twitter Facebook Linkedin Whatsapp Reddit

Join our Linux and open source community. Subscribe to our newsletter for tips, tricks, and collaboration opportunities!

Recent Post

Categories

Leave a Comment

Your email address will not be published. Required fields are marked *

Related Post

How To Install PostgreSQL 17 on openSUSE

Welcome to today’s guide on how to install PostgreSQL 17 on openSUSE Leap and Tumbleweed Linux systems. PostgreSQL is a […]

  • NO COMMENTS
  • April 4, 2025
How To Install PostgreSQL 17 on Oracle Linux 9

In this short guide we will perform the installation of PostgreSQL 17 database server on Oracle Linux 9 server. PostgreSQL […]

  • NO COMMENTS
  • April 4, 2025
Install Zoom Workplace on Manjaro | Garuda Linux

Zoom is a software solution which provides video and online chat services through a cloud-based peer-to-peer software platform. It is […]

  • NO COMMENTS
  • April 4, 2025

Cloud Services

Infra Services

Iac & GitOps

IT Support

InfoSec

Development

Elearning

  • Ebooks
  • Cheat Sheets
  • Certifications Prep
Latest Articles
Follow Us
X-twitter Linkedin Facebook-f Github

Cloud Services

Infrastructure Support

Microservices & GitOps

IT Support Services

IT Support Services

Software Development

Elearning

  • Certifications Prep
  • Cheat Sheets
  • Ebooks
Latest Articles
Follow Us
X-twitter Linkedin Facebook-f Github

Let's Connect

Unleash the full potential of your business with CloudSpinx. Our expert solutions specialists are standing by to answer your questions and tailor a plan that perfectly aligns with your unique needs.
You will get a response from our solutions specialist within 12 hours
We understand emergencies can be stressful. For immediate assistance, chat with us now

Contact CloudSpinx today!

Download CloudSpinx Profile

Discover the full spectrum of our expertise and services by downloading our detailed Company Profile. Simply enter your first name, last name, and email address.