AWS Fundamentals Logo
AWS Fundamentals
AWS::IAM::User

IAM User

Creates a new IAM user for your AWS-account. For information about quotas for the number of IAM users you can create, see [IAM and quotas](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html) in the *IAM User Guide*.

Properties

8 configurable properties. Click a row to see details.

Filter:
PropertyTypeFlags
Groups
Array<string>
LoginProfile
LoginProfile
ManagedPolicyArns
Array<string>
Path
string
PermissionsBoundary
string
Policies
Array<Policy>
Tags
Array<Tag>
UserName
string
Create-only

Return Values

Values returned after the resource is created. Access these with Fn::GetAtt.

AttributeTypeDescription
Arnstring-

Sample CloudFormation Template

A minimal template with required properties and common optional ones.

template.yaml
AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::IAM::User

Resources:
  MyResource:
    Type: AWS::IAM::User
    Properties:
      Tags:
        - Key: Environment
          Value: Production

Required IAM Permissions

Permissions CloudFormation needs in your IAM role to manage this resource.

create

iam:CreateLoginProfileiam:AddUserToGroupiam:PutUserPolicyiam:AttachUserPolicyiam:CreateUseriam:GetUseriam:TagUser

read

iam:GetUserPolicyiam:ListGroupsForUseriam:ListAttachedUserPoliciesiam:ListUserPoliciesiam:GetUseriam:GetLoginProfile

update

iam:UpdateLoginProfileiam:UpdateUseriam:PutUserPermissionsBoundaryiam:AttachUserPolicyiam:DeleteUserPolicyiam:DeleteUserPermissionsBoundaryiam:TagUseriam:UntagUser

delete

iam:DeleteAccessKeyiam:RemoveUserFromGroupiam:DeleteUserPolicyiam:DeleteUseriam:DetachUserPolicyiam:DeleteLoginProfileiam:ListAccessKeysiam:GetUserPolicy

list

iam:listUsers

Get the IAM Cheat Sheet

Everything you need to know about IAM on one page. HD quality, print-friendly.

Download Free Infographic

Quick Facts

ServiceIAM
Properties9
Required0
TaggingSupported
Primary IDUserName

Supported Operations

CreateReadUpdateDeleteList

Immutable After Creation

These properties cannot be changed after the resource is created. Updating them triggers a replacement.

UserName

Related Resources

External Links