Log in
Request Support

Allow AWS IAM User to Create Access Keys and Upload SSH public keys

  • Blog
  • Allow AWS IAM User to Create Access Keys and Upload SSH public keys

This short tutorial will show AWS Cloud Administrators how to create an IAM policy that gives cloud users permissions to generate their own Access Keys and SSH Keys. We will also include permission to change password without contacting Admin for such basic requests.

For this you need to create an IAM policy under IAM → Policies → Create policy.

Here is the policy json code to use.

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "iam:ListUsers",
                "iam:GetAccountPasswordPolicy"
            ],
            "Resource": "*"
        },
        {
            "Effect": "Allow",
            "Action": [
                "iam:*AccessKey*",
                "iam:*SSHPublicKey*",
                "iam:ChangePassword",
                "iam:GetUser",
                "iam:*ServiceSpecificCredential*",
                "iam:*SigningCertificate*"
            ],
            "Resource": [
                "arn:aws:iam::*:user/${aws:username}"
            ]
        }
    ]
}

See below screenshot of the same.

Review the policy and agree to create if all looks good.

You can then attach the policy to a user group or directly to an IAM user account.

You can now ask the users in a group attached to policy if they’re able to generate Access and SSH keys.

Similar guides:

Twitter Facebook Linkedin Whatsapp Reddit

Join our Linux and open source community. Subscribe to our newsletter for tips, tricks, and collaboration opportunities!

Recent Post

Categories

Unlock the Right Solutions with Confidence

At CloudSpinx, we don’t just offer services - we deliver clarity, direction, and results. Whether you're navigating cloud adoption, scaling infrastructure, or solving DevOps challenges, our seasoned experts help you make smart, strategic decisions with total confidence. Let us turn complexity into opportunity and bring your vision to life.

Email us
Chat with us

Leave a Comment

Your email address will not be published. Required fields are marked *

Related Post

fix ifup: command not found on Debian or Ubuntu

Are you seeing the error -bash: ifup: command not found (or ifdown: command not found) on your Ubuntu or Debian […]

  • NO COMMENTS
  • April 24, 2025
How To Run GNS3 VM on KVM

GNS3 is an open source Network Simulator that is used to emulate, configure, test and troubleshoot virtual and real networks. […]

  • NO COMMENTS
  • April 24, 2025
How To Resize EC2 Instance Type on AWS

One major benefit of Cloud computing is the ability to consume and scale compute resources as dictated by your application […]

  • NO COMMENTS
  • April 24, 2025

Cloud Services

Infra Services

Iac & GitOps

IT Support

InfoSec

Development

Elearning

  • Ebooks
  • Cheat Sheets
  • Certifications Prep
Latest Articles
Follow Us
X-twitter Linkedin Facebook-f Github

Cloud Services

Infrastructure Support

Microservices & GitOps

IT Support Services

IT Support Services

Software Development

Elearning

  • Certifications Prep
  • Cheat Sheets
  • Ebooks
Latest Articles
Follow Us
X-twitter Linkedin Facebook-f Github

Let's Connect

Unleash the full potential of your business with CloudSpinx. Our expert solutions specialists are standing by to answer your questions and tailor a plan that perfectly aligns with your unique needs.
You will get a response from our solutions specialist within 12 hours
We understand emergencies can be stressful. For immediate assistance, chat with us now

Contact CloudSpinx today!

Download CloudSpinx Profile

Discover the full spectrum of our expertise and services by downloading our detailed Company Profile. Simply enter your first name, last name, and email address.