github.com/openshift/installer@v1.4.17/docs/user/aws/iam.md (about) 1 # IAM User 2 3 When you first create an Amazon Web Services (AWS) account, you begin with a single sign-in identity that has complete access to all AWS services and resources in the account. This identity is called the [AWS account *root user*][aws-account-root-user]. You can sign in as the root user using the email address and password that you used to create the account. 4 5 This is a highly privileged account and not recommended for usage beyond configuring initial account and 6 billing settings, an initial set of users, and locking it down. 7 8 Before proceeding with the OpenShift install, you should create a IAM administrative user following the steps 9 outlined here: 10 11 [AWS: Creating an IAM User in Your AWS Account][user-create] 12 13 ## Step 1: Name User, Identify Programmatic Access 14 15 In this step, you identify the IAM user name. We require programmatic access to AWS (via generated access key), check 16 this box. 17 18  19 20 ## Step 2: Attach Administrative Policy 21 22 Many permissions are required by the AWS installer. A specific set of policies and services will be identified at a 23 future date so a specific policy can be created and attached. Until then, attach the predefined "AdministratorAccess" 24 for the installation to use. 25 26  27 28 ## Step 3: Optional, Skip 29 30 Step 3 is optional and we’ll skip it. 31 32 ## Step 4: Review Settings 33 34 Step 4 allows us to review the settings we've selected. Make sure your screen reflects your chosen name and 35 AdministratorAccess 36 37  38 39 ## Step 5: Acquire Access Key and Secret 40 41 In Step 5, you need to save the access key ID and secret access key values to configure your local machine to run 42 the installer. This step is your only opportunity to collect those values. 43 44  45 46 [aws-account-root-user]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_root-user.html 47 [user-create]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_create.html