AWS provides a plethora of services to access these services. You will need a strategy to distribute and rotate the credentials to your EC2 instances, especially the ones which AWS creates on your behalf like Spot instances or Auto Scaling groups. A good security practice is credential scoping - granting access only to the services your application requires. AWS solves this issue via IAM roles.
- From the IAM dashboard, click on Roles in the navigation pane link and then on the Create role button:.
- Select the EC2 service and then the use case as shown here, and click on the Next: Permissions button:
- Next, we will assign ...