AWS - Access for non-UW collaborators
Recommended: Affiliate NetID Access
By default all UW AWS accounts will be accessed using NetID authentication. This extends the security provided by NetID authentication & Multi-factor Authentication to UW AWS accounts. (AWS - Sign In to the AWS Management Console )
AWS authorization groups are managed using the campus Manifest service.
- The recommended way to provide access to non-UW collaborators is to invite them to create a NetID: Manifest - Using a Manifest Group to Invite People to Create Identities (NetIDs)
- For longer term relationships you can request an NetID for an affiliate population - see Getting NetIDs for Affiliate Populations for information on eligibility and considerations.
Your collaborator can then be added to an existing Manifest group, or you can create a custom Role & Manifest group:
AWS IAM User Access
NetID login is handled using an identity provider and does not create a native IAM user account within Amazon. IAM users are most frequently used as service accounts to run processes. If it is necessary to create an IAM user, please review Security best practices in IAM, in particular using the principle of least privilege.
This account should be secured with Multi-Factor Authentication (MFA) to comply with UW System authentication standards.
See AWS - Sign In to the AWS Management Console for information on how to log in with an IAM user