{"id":8618,"date":"2025-04-24T11:41:37","date_gmt":"2025-04-24T02:41:37","guid":{"rendered":"https:\/\/engineer-chanpu.blog\/?p=8618"},"modified":"2025-04-24T11:41:38","modified_gmt":"2025-04-24T02:41:38","slug":"aws-%ec%82%ac%ec%9a%a9%ec%9e%90-%ea%b4%80%eb%a6%ac-%eb%b0%a9%ec%8b%9d-%eb%b9%84%ea%b5%90","status":"publish","type":"post","link":"https:\/\/engineer-chanpu.blog\/?p=8618","title":{"rendered":"AWS \uc0ac\uc6a9\uc790 \uad00\ub9ac \ubc29\uc2dd \ube44\uad50"},"content":{"rendered":"\n<p><strong>\u2013 IAM \uc0ac\uc6a9\uc790 vs IAM Identity Center \uc0ac\uc6a9\uc790 \u2013<\/strong><\/p>\n\n\n\n<h3 class=\"wp-block-heading\">1. \uac1c\uc694<\/h3>\n\n\n\n<p>AWS\uc5d0\uc11c\ub294 \ub450 \uac00\uc9c0 \uc8fc\uc694 \uc0ac\uc6a9\uc790 \uad00\ub9ac \ubc29\uc2dd\uc778<strong> IAM \uc0ac\uc6a9\uc790(IAM User)<\/strong>\uc640 <strong>IAM Identity Center \uc0ac\uc6a9\uc790<\/strong>(\uc774\uc804 \uc774\ub984: AWS SSO)\ub97c \uc81c\uacf5\ud558\uace0 \uc788\uc2b5\ub2c8\ub2e4. \ubcf8 \ubcf4\uace0\uc11c\uc5d0\uc11c\ub294 \ub450 \ubc29\uc2dd\uc758 \uc815\uc758, \uc8fc\uc694 \ucc28\uc774\uc810, \uc0ac\uc6a9 \uad8c\uc7a5 \uc0c1\ud669 \ub4f1\uc744 \uc815\ub9ac\ud558\uc5ec, \uc870\uc9c1 \ud658\uacbd\uc5d0 \uc801\ud569\ud55c \uc0ac\uc6a9\uc790 \uad00\ub9ac \ubc29\uc2dd\uc744 \uc120\ud0dd\ud558\ub294 \ub370 \ucc38\uace0 \uc790\ub8cc\ub85c \ud65c\uc6a9\ud558\uace0\uc790 \ud569\ub2c8\ub2e4.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">2. IAM \uc0ac\uc6a9\uc790 (IAM User)<\/h3>\n\n\n\n<h4 class=\"wp-block-heading\">&#x1f539; \uc815\uc758<\/h4>\n\n\n\n<p>IAM(User)\uc740 AWS \uacc4\uc815 \ub0b4\uc5d0\uc11c \uc9c1\uc811 \uc0dd\uc131\ub418\ub294 \uc0ac\uc6a9\uc790\ub85c, \ud574\ub2f9 \uacc4\uc815\uc758 \ub9ac\uc18c\uc2a4\uc5d0 \uc811\uadfc\ud558\uae30 \uc704\ud55c \uc790\uaca9 \uc99d\uba85\uc744 \uac1c\ubcc4\uc801\uc73c\ub85c \ubd80\uc5ec\ubc1b\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">&#x1f539; \ud2b9\uc9d5<\/h4>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\uac01 \uc0ac\uc6a9\uc790\uc5d0\uac8c **\uace0\uc720\ud55c \uc790\uaca9 \uc99d\uba85(Access Key, Secret Key, \ucf58\uc194 \ube44\ubc00\ubc88\ud638)**\uc744 \ubc1c\uae09<\/li>\n\n\n\n<li><strong>\uad8c\ud55c \ubd80\uc5ec\ub294 IAM \uc815\ucc45\uc744 \ud1b5\ud574 \uc9c1\uc811 \ubd80\uc5ec<\/strong><\/li>\n\n\n\n<li><strong>MFA \uc124\uc815, \ud328\uc2a4\uc6cc\ub4dc \uc815\ucc45 \ub4f1<\/strong>\uc744 \uac1c\ubcc4 \uc124\uc815<\/li>\n\n\n\n<li><strong>\ud504\ub85c\uadf8\ub7a8\uc801 \uc811\uadfc \ubc0f \ucf58\uc194 \uc811\uadfc \ubaa8\ub450 \uac00\ub2a5<\/strong><\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">&#x1f539; \uc0ac\uc6a9 \uc0ac\ub840<\/h4>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\ube44\uc0c1\uc6a9 \ub8e8\ud2b8 \uacc4\uc815 \ub300\uccb4 \uc0ac\uc6a9\uc790<\/li>\n\n\n\n<li>CI\/CD \uc2dc\uc2a4\ud15c\uc5d0\uc11c \uc0ac\uc6a9\ud558\ub294 \uc11c\ube44\uc2a4 \uacc4\uc815<\/li>\n\n\n\n<li>Amazon CodeCommit, Keyspaces \ub4f1\uc758 \uc11c\ube44\uc2a4 \uc804\uc6a9 \uc811\uadfc<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">3. IAM Identity Center \uc0ac\uc6a9\uc790<\/h3>\n\n\n\n<h4 class=\"wp-block-heading\">&#x1f539; \uc815\uc758<\/h4>\n\n\n\n<p>IAM Identity Center\ub294 <strong>\uc911\uc559\uc9d1\uc911\uc2dd \uc0ac\uc6a9\uc790 \ubc0f \uc811\uadfc \uad00\ub9ac \uc11c\ube44\uc2a4<\/strong>\ub85c, \uc870\uc9c1 \ub0b4 \uc0ac\uc6a9\uc790\uc5d0\uac8c \uc5ec\ub7ec AWS \uacc4\uc815 \ubc0f \ud074\ub77c\uc6b0\ub4dc \uc560\ud50c\ub9ac\ucf00\uc774\uc158\uc5d0 \ub300\ud55c SSO(Single Sign-On)\ub97c \uc81c\uacf5\ud569\ub2c8\ub2e4.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">&#x1f539; \ud2b9\uc9d5<\/h4>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>\uc0ac\uc6a9\uc790 \ub514\ub809\ud130\ub9ac\uc640 \uc5f0\ub3d9<\/strong> (AD, Okta, Entra ID \ub4f1)<\/li>\n\n\n\n<li>AWS \uacc4\uc815, \uc5ed\ud560, \uc560\ud50c\ub9ac\ucf00\uc774\uc158\uc5d0 <strong>SSO \ubc29\uc2dd\uc73c\ub85c \uc811\uadfc<\/strong><\/li>\n\n\n\n<li>\uc911\uc559\uc5d0\uc11c MFA, \uc811\uadfc \uad8c\ud55c, \uc138\uc158 \uc2dc\uac04 \ub4f1\uc744 <strong>\ud1b5\ud569 \uad00\ub9ac \uac00\ub2a5<\/strong><\/li>\n\n\n\n<li><strong>\uc0ac\uc6a9\uc790 \uad8c\ud55c\uc740 \uad8c\ud55c \uc138\ud2b8(Permission Sets)\ub97c \ud1b5\ud574 \uc815\uc758<\/strong><\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">&#x1f539; \uc0ac\uc6a9 \uc0ac\ub840<\/h4>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>\uae30\uc5c5 \ub2e8\uc704 \uc0ac\uc6a9\uc790 \uad00\ub9ac<\/strong><\/li>\n\n\n\n<li><strong>\ub2e4\uc218\uc758 AWS \uacc4\uc815\uc744 \ud1b5\ud569 \uad00\ub9ac<\/strong><\/li>\n\n\n\n<li><strong>\uc5d4\ud130\ud504\ub77c\uc774\uc988 \ud658\uacbd\uc5d0\uc11c\uc758 \ubcf4\uc548 \uac15\ud654 \ubc0f \ud3b8\uc758\uc131 \ud655\ubcf4<\/strong><\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">4. \uc8fc\uc694 \ucc28\uc774\uc810 \ube44\uad50<\/h3>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><thead><tr><th>\ud56d\ubaa9<\/th><th>IAM \uc0ac\uc6a9\uc790<\/th><th>IAM Identity Center \uc0ac\uc6a9\uc790<\/th><\/tr><\/thead><tbody><tr><td>\uc0dd\uc131 \uc704\uce58<\/td><td>AWS \uacc4\uc815 \ub0b4 IAM \uc9c1\uc811 \uc0dd\uc131<\/td><td>Identity Center \ub0b4 \uc0ac\uc6a9\uc790 \ub4f1\ub85d \ub610\ub294 \uc678\ubd80 \uc5f0\ub3d9<\/td><\/tr><tr><td>\uc778\uc99d \ubc29\uc2dd<\/td><td>\ube44\ubc00\ubc88\ud638 + MFA \ub610\ub294 Access Key<\/td><td>SSO (\uc678\ubd80 IdP \uc5f0\ub3d9 \uac00\ub2a5)<\/td><\/tr><tr><td>\uad8c\ud55c \ubd80\uc5ec \ubc29\uc2dd<\/td><td>IAM \uc815\ucc45\uc744 \uac1c\ubcc4 \uc0ac\uc6a9\uc790\uc5d0 \uc9c1\uc811 \uc5f0\uacb0<\/td><td>\uad8c\ud55c \uc138\ud2b8(Permission Set)\ub97c \uc5ed\ud560\uacfc \ub9e4\ud551<\/td><\/tr><tr><td>\uc911\uc559 \uad00\ub9ac \uc5ec\ubd80<\/td><td>\uac1c\ubcc4 \uacc4\uc815 \uae30\uc900 \uad00\ub9ac<\/td><td>\uc870\uc9c1 \uc218\uc900 \uc911\uc559 \uc9d1\uc911\uc2dd \uad00\ub9ac<\/td><\/tr><tr><td>\uc0ac\uc6a9 \ud3b8\uc758\uc131<\/td><td>\ub2e8\uc77c \uc0ac\uc6a9\uc790\uc5d0 \uc801\ud569<\/td><td>\ub2e4\uc218 \uc0ac\uc6a9\uc790 \ubc0f \uacc4\uc815\uc5d0 \uc801\ud569<\/td><\/tr><tr><td>\ubcf4\uc548 \ud1b5\uc81c<\/td><td>\uac01 \uc0ac\uc6a9\uc790\ubcc4\ub85c MFA, \ud328\uc2a4\uc6cc\ub4dc \ub4f1 \uc124\uc815<\/td><td>\uc870\uc9c1 \uc218\uc900 \ubcf4\uc548 \uc815\ucc45 \uc77c\uad04 \uc801\uc6a9 \uac00\ub2a5<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\">5. \uc120\ud0dd \uac00\uc774\ub4dc<\/h3>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><thead><tr><th>\uc0c1\ud669<\/th><th>\uad8c\uc7a5 \ubc29\uc2dd<\/th><\/tr><\/thead><tbody><tr><td>\uc18c\uaddc\ubaa8, \ub2e8\uc77c \uacc4\uc815 \uc0ac\uc6a9<\/td><td>IAM \uc0ac\uc6a9\uc790<\/td><\/tr><tr><td>\ub2e4\uc218\uc758 AWS \uacc4\uc815 \ubc0f \uc0ac\uc6a9\uc790 \uad00\ub9ac<\/td><td>IAM Identity Center \uc0ac\uc6a9\uc790<\/td><\/tr><tr><td>\uc5d4\ud130\ud504\ub77c\uc774\uc988 \ubcf4\uc548 \uc815\ucc45 \ud1b5\ud569 \ud544\uc694<\/td><td>IAM Identity Center \uc0ac\uc6a9\uc790<\/td><\/tr><tr><td>\uc77c\ud68c\uc131 \uc811\uadfc \ub610\ub294 \uc11c\ube44\uc2a4 \uc804\uc6a9 \uacc4\uc815 \ud544\uc694<\/td><td>IAM \uc0ac\uc6a9\uc790<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\">6. \uacb0\ub860<\/h3>\n\n\n\n<p>IAM \uc0ac\uc6a9\uc790\ub294 \ub2e8\uc21c\ud558\uace0 \ube60\ub974\uac8c \uc124\uc815\ud560 \uc218 \uc788\ub294 \uc7a5\uc810\uc774 \uc788\uc73c\ub098, \ubcf4\uc548\uc131\uacfc \uc6b4\uc601 \ud3b8\uc758\uc131 \uba74\uc5d0\uc11c\ub294 \ud55c\uacc4\uac00 \uc788\uc2b5\ub2c8\ub2e4. \ubc18\uba74 IAM Identity Center\ub294 \ucd08\uae30 \uc124\uc815\uc740 \ubcf5\uc7a1\ud560 \uc218 \uc788\uc73c\ub098, \uc0ac\uc6a9\uc790 \ubc0f \uad8c\ud55c \uad00\ub9ac\ub97c \uc911\uc559\uc5d0\uc11c \ud1b5\ud569\ud560 \uc218 \uc788\ub294 \ud604\ub300\uc801\uc778 \uc811\uadfc \ubc29\uc2dd\uc785\ub2c8\ub2e4.<\/p>\n\n\n\n<p>\uae30\uc5c5 \ubc0f \uc870\uc9c1\uc758 \ubcf4\uc548 \uc218\uc900, \uaddc\ubaa8, AWS \uacc4\uc815 \uc6b4\uc601 \ubc29\uc2dd\uc5d0 \ub530\ub77c \uc801\uc808\ud55c \uc0ac\uc6a9\uc790 \uad00\ub9ac \uc804\ub7b5\uc744 \uc218\ub9bd\ud574\uc57c \ud569\ub2c8\ub2e4.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u2013 IAM \uc0ac\uc6a9\uc790 vs IAM Identity Center \uc0ac\uc6a9\uc790 \u2013 1. \uac1c\uc694 AWS\uc5d0\uc11c\ub294 \ub450 \uac00\uc9c0 \uc8fc\uc694 \uc0ac\uc6a9\uc790 \uad00\ub9ac \ubc29\uc2dd\uc778 IAM \uc0ac\uc6a9\uc790(IAM User)\uc640 IAM Identity Center \uc0ac\uc6a9\uc790(\uc774\uc804 \uc774\ub984: AWS SSO)\ub97c \uc81c\uacf5\ud558\uace0 \uc788\uc2b5\ub2c8\ub2e4. &#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[227,33],"tags":[],"class_list":["post-8618","post","type-post","status-publish","format-standard","hentry","category-amazon-web-service","category-tech-notes"],"_links":{"self":[{"href":"https:\/\/engineer-chanpu.blog\/index.php?rest_route=\/wp\/v2\/posts\/8618","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/engineer-chanpu.blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/engineer-chanpu.blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/engineer-chanpu.blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/engineer-chanpu.blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=8618"}],"version-history":[{"count":2,"href":"https:\/\/engineer-chanpu.blog\/index.php?rest_route=\/wp\/v2\/posts\/8618\/revisions"}],"predecessor-version":[{"id":8620,"href":"https:\/\/engineer-chanpu.blog\/index.php?rest_route=\/wp\/v2\/posts\/8618\/revisions\/8620"}],"wp:attachment":[{"href":"https:\/\/engineer-chanpu.blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=8618"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/engineer-chanpu.blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=8618"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/engineer-chanpu.blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=8618"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}