Administering access rights with IAM > Create IAM Group and IAM User > Create Admin User

Create Admin User

In the left sidebar, select Users then select Add User
On the Specify user details page, under User details, in the User name box, enter a name for the new user. This is their AWS login. Example: AdminUser
- Selecting Provide user access to the – AWS Management Console (optional) creates an AWS Management Console login for the new user.
- You are asked if you give access to the dashboard to one person. We recommend that you create users in the IAM Identity Center instead of IAM.
- To switch to creating users in IAM Identity Center, select Specify a user in Identity Center.
- If you have not enabled IAM Identity Center, selecting this option will take you to the services page in the control panel where you can enable it. For details on this process, see AWS IAM Identity Center User Guide (inheriting from AWS Single Sign-On).
- If you have enabled IAM Identity Center, selecting this option will take you to the “Specify User Details” page in IAM Identity Center. For details on this process, see AWS IAM Identity Center User Guide (inheriting from AWS Single Sign-On).
- If you cannot use IAM Identity Center, select I want to create an IAM user.
For the Console password, select one of the following options:
- Autogenerated password - The user will receive a randomly generated password that meets the account password policy. You can view or download passwords when you reach the Get Passwords page.
- Custom password - The user will be assigned a password that you enter in the box.
- (Optional) Users must create a new password at the next sign-in (recommended) is selected by default to ensure users are forced to change their password the first time they log in.
- Select Next
On the Set permissions page, specify how you want to assign permissions to this user. Choose one of the following three options:
- Select Add user to group - Select this option if you want to assign users to one or more groups that already have permission policies. IAM displays a list of groups in your account, along with the policies that have been mounted. You can select one or more existing groups or select Create Group to create a new group. For more information, see Instructions for changing permissions for an IAM user.
- Copy permissions - Select this option to copy all group members, mounted management policies, embedded inline policies and any existing permission boundaries from the current user to the new user. IAM displays a list of users in your account. Choose the user whose permissions best suit the needs of your new user.
- Attach policies directly - Select this option to see a list of AWS-managed and customer-managed policies in your account. Select the policies that you want to attach to the user, or select Create Policy to open a new browser tab and create a new policy. For more information, see step 4 in the Create IAM Policy procedure. After creating the policy, close that tab and return to the original tab to add the policy to the user.
(Optional) On Review and Create, under Tags, select Add a new tag to add data about the user by tagging as a key-value pair. D
- Review all the options you have selected up to this point. When you’re ready to continue, select Create User.
On the Retrieve Password page, get the password specified for the user:
- Select Show next to the password to see the user’s password, from which you can record the password manually.
- Select Download.csv to download user credentials as a .csv file that you can save to a safe location.
Check User created successfully
Check the user’s group
Copy the console-sign link.