You use access keys with API calls to allow the call to proceed. Without an access key, AWS rejects any requests made. Access keys come in two parts: public and secret. To safeguard your setup, the private key must remain private. During the creation process, you download both keys. Make sure you keep them in a safe place.

AWS Access Keys. Access Keys are used to sign the requests you send to Amazon S3. Like the Username/Password pair you use to access your AWS Management Console, Access Key Id and Secret Access Key are used for programmatic (API) access to AWS services. You can manage your Access Keys in AWS Management Console. AWS Access Keys. Access Keys are used to sign the requests you send to Amazon S3. Like the Username/Password pair you use to access your AWS Management Console, Access Key Id and Secret Access Key are used for programmatic (API) access to AWS services.

1. Go to Amazon’s Console.
   You see the Identity and Access Management (IAM) Console.
2. Click Groups in the Navigation pane.

   You see an option for creating a new group.

3. Click Create New Group.

   AWS asks you to provide a group name.

4. Type a group name and click Next Step.
   AWS asks you to attach a policy to the group. Normally you choose a policy that provides just the level of access required by that group. However, when working in a production environment, remember to use policies carefully.
5. Select AdministratorAccess and click Next Step.

   You see a Review page where you can review the group’s settings.

6. Click Create Group.
   The group is now ready for use. You see it in the Groups tab of the IAM Console. However, you still need to create a user account to obtain the required access keys.
7. Select Users in the Navigation pane.
   You see the Users tab of the IAM Console.
8. Click Add User.

   AWS asks you to provide a username. Note that this page also provides the means for configuring the kind of user access.

9. Type a username.

   AWS lets you add more than one user at a time, as long as both users have the same requirements.

10. Select both Access Type entries.

    Your choice here will depend on your needs.

11. Configure the password settings for the user you want to create.

    The default is to autogenerate a password and then require the user to change it during the next login. Because you want to create an account for yourself, you can save time by creating a custom password and deselecting the option that requires the user to change the password during the next login.

12. Click Next: Permissions.

    AWS asks you to set permission for the user.

13. Choose Add User to Group and then select the Developers entry in the list of groups shown.
14. Click Next: Review.
    AWS shows you the configuration for your user.
15. Click Create User.
    AWS generates the user and the user’s access key.
16. Click Download .CSV.

Aws Create Access Key For User

Your browser downloads a .CSV file containing the public and secret keys for your user account. Keep these keys in a safe location.

You can create new access keys as needed by accessing the user’s entry on the Users tab of the IAM Console and choosing the Security Credentials tab of the individual user’s account. The Security Credentials tab contains a Create Access Key in the Access Keys area. Every time you create a new access key, you have the option of downloading a .CSV file containing the public and secret keys. To remove an existing key, click the X next to that key’s entry on the Security Credentials tab.

Root Access Keys provide unlimited access to your AWS resources. It's not recommended to use them in normal situations. AWS recommends to delete existing Root Access Keys and create IAM user and Access Keys limited to specific service or resource (see below).

To Delete Root Access Keys

1. Type https://aws.amazon.com/ in your web browser

2. Click My Account, AWS Management Console

3. Enter your account email address and password:

4. Type the IAM in the search box and choose the IAM service from the drop-down list.

You will be redirected to IAM Dashboard

5. Navigate to Security Status and expand the Delete your root access keys section.

Aws Generate Access Key For User List

6. Click Manage Security Credentials

7. Click Continue to Security Credentials

Aws Generate Access Key For User Login

Your Security Credentials page will open

8. Expand the Access Keys (access key id and secret acces key) section

Aws Generate Access Key For User List

9. Click the Delete link next to your access keys row.

Aws Create Access Key Iam

10. Confirm Access Keys deletion.

11. Your Root Access Keys are deleted. Now you can create IAM user and Access Keys limited to specific service or resource (see below).

Aws Generate Access Key For User Guide

Be sure to replace your root access keys with your IAM access keys in any programs/scripts you are currently using.