2018-07-11 07:39:36 +02:00
.. Copyright 2010-2017 Amazon.com, Inc. or its affiliates. All Rights Reserved.
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0
International License (the "License"). You may not use this file except in compliance with the
License. A copy of the License is located at http://creativecommons.org/licenses/by-nc-sa/4.0/.
This file is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
either express or implied. See the License for the specific language governing permissions and
limitations under the License.
.. _aws-boto3-iam-examples-managing-users:
***** ***** ***** ***
2021-09-22 18:34:33 +02:00
Managing IAM users
2018-07-11 07:39:36 +02:00
***** ***** ***** ***
This Python example shows you how to create a user, list users, update a user name and delete a user.
2021-09-22 18:34:33 +02:00
The scenario
2018-07-11 07:39:36 +02:00
============
In this example Python code is used to create and manage users in IAM. The code uses the
Amazon Web Services (AWS) SDK for Python to manage users using these methods of the
IAM client class:
2019-01-28 22:47:44 +01:00
* `create_user <https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/iam.html#IAM.Client.create_user> `_
2018-07-11 07:39:36 +02:00
2019-01-28 22:47:44 +01:00
* `get_paginator('list_users') <https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/iam.html#IAM.Client.get_paginator> `_ .
2018-07-11 07:39:36 +02:00
2019-01-28 22:47:44 +01:00
* `update_user <https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/iam.html#IAM.Client.update_user> `_ .
2018-07-11 07:39:36 +02:00
2019-01-28 22:47:44 +01:00
* `delete_user <https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/iam.html#IAM.Client.delete_user> `_ .
2018-07-11 07:39:36 +02:00
All the example code for the Amazon Web Services (AWS) SDK for Python is available `here on GitHub <https://github.com/awsdocs/aws-doc-sdk-examples/tree/master/python/example_code> `_ .
For more information about IAM users, see `IAM Users <http://docs.aws.amazon.com/IAM/latest/UserGuide/id_users.html> `_
in the *IAM User Guide* .
2021-09-22 18:34:33 +02:00
Prerequisite tasks
2018-07-11 07:39:36 +02:00
=================
To set up and run this example, you must first configure your AWS credentials, as described in :doc: `quickstart` .
2021-09-22 18:34:33 +02:00
Create a user
2018-07-11 07:39:36 +02:00
=============
Create a new IAM user for your AWS account.
For information about limitations on the number of IAM users you can create, see
`Limitations on IAM Entities <http://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-limits.html> `_
in the *IAM User Guide* .
The example below shows how to:
* Create a new IAM user using
2019-01-28 22:47:44 +01:00
`create_user <https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/iam.html#IAM.Client.create_user> `_ .
2018-07-11 07:39:36 +02:00
Example
-------
.. code-block :: python
import boto3
# Create IAM client
iam = boto3.client('iam')
# Create user
response = iam.create_user(
UserName='IAM_USER_NAME'
)
print(response)
2021-09-22 18:34:33 +02:00
List users in your account
2018-07-11 07:39:36 +02:00
==========================
List the IAM users.
The example below shows how to:
* List the IAM users using
2019-01-28 22:47:44 +01:00
`get_paginator('list_users') <https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/iam.html#IAM.Client.get_paginator> `_ .
2018-07-11 07:39:36 +02:00
For more information about paginators see, :doc: `paginators`
Example
-------
.. code-block :: python
import boto3
# Create IAM client
iam = boto3.client('iam')
# List users with the pagination interface
paginator = iam.get_paginator('list_users')
for response in paginator.paginate():
print(response)
2021-09-22 18:34:33 +02:00
Update a user's name
2018-07-11 07:39:36 +02:00
====================
Update the name and/or the path of the specified IAM user.
To change a user's name or path, you must use the AWS CLI, Tools for Windows PowerShell, or AWS API.
There is no option in the console to rename a user. For information about the permissions that you
need in order to rename a user, see
`Delegating Permissions to Administer IAM Users, Groups, and Credentials <http://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_manage.html#id_users_renaming> `_
in the *IAM User Guide* .
The example below shows how to:
* Update an IAM user name using
2019-01-28 22:47:44 +01:00
`update_user <https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/iam.html#IAM.Client.update_user> `_ .
2018-07-11 07:39:36 +02:00
Example
-------
.. code-block :: python
import boto3
# Create IAM client
iam = boto3.client('iam')
# Update a user name
iam.update_user(
UserName='IAM_USER_NAME',
NewUserName='NEW_IAM_USER_NAME'
)
2021-09-22 18:34:33 +02:00
Delete a user
2018-07-11 07:39:36 +02:00
=============
Delete the specified IAM user. The user must not belong to any groups or have any access keys, signing
certificates, or attached policies.
The example below shows how to:
* Delete an IAM user name using
2019-01-28 22:47:44 +01:00
`delete_user <https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/iam.html#IAM.Client.delete_user> `_ .
2018-07-11 07:39:36 +02:00
Example
-------
.. code-block :: python
import boto3
# Create IAM client
iam = boto3.client('iam')
# Delete a user
iam.delete_user(
UserName='IAM_USER_NAME'
)
