Creating an AWS IAM Admin User and Group


It is bad practice to use your root AWS account for Administration tasks so this article shows how to create a new IAM Admin User and Group.

You will need to log on as root in order to complete these steps.

First of all we need to grant access to billing information to the IAM user we are going to create. To do this navigate to your user at the top right of the AWS console and click on My Account. Scroll down the page until you see IAM User and Role Access to Billing Information.

Now Activate IAM Access and click on Update.

Navigate to the IAM service and choose Users from the menu. No select Add User. Enter your user name (suggested: Administrator), select AWS Management Console Access and enter a custom password.

Once you are done click on Next: Permissions.

Now select Create Group and enter a group name of Administrators. Click on Filter policies and check AWS managed – job function.

Now check AdministratorAccess and click Create Group.

You will now be able to see the group in the Group list. If you cannot then click refresh and make sure it is selected.

Add tags to help identify the user if required (recommended).

Move to the final step and you can download the credentials and email the details to the user.

AWS Certification

I have decided to get AWS Certification in order to support my roles in DevOps.

I am starting with AWS Certified Cloud Practitioner and the moving on to AWS Certified DevOps Engineer – Professional.

I have just completed the AWS Cloud Practitioner Essentials Course (Second Edition) in preparation for this.

Click the following link to get started: .

Best WordPress Hosting – Amazon Lightsail

I used to pay my hosting provider £215.28 a year for WordPress hosting (this site). I have just switched to Amazon Lightsail (on AWS) and will now pay approximately £32.16 a year on their cheapest instance plan.

This price is based on 512MB Memory, 1 vCPU and 20GB SSD.

I looked at a number of alternatives when considering the move but could not really find any downsides.

Amazon Lightsail is designed for users with less cloud experience and all of this could have been accomplished using the standard AWS services, however as far as I could work out this was by far the cheapest way to implement the service using exactly the same underlying servers.

Setup was really easy. I created a new instance for my WordPress site. Lightsail configured everything required to run WordPress. All that remained for me to do was to configure my domain name provider for to use the name servers for Amazon Lightsail. Once that was done I created a Static Ip on Lightsail and associated that with my WordPress instance and then my domain name.

Removing the Bitnami Banner

To remove the Bitnami banner from your WordPress site run the following:

sudo /home/bitnami/apps/wordpress/bnconfig.disabled --disable_banner 1

And now reboot your instance in the Amazon Lightsail console:

Uploading a New WordPress Theme

Run the following command in your local SSH client to upload the new theme:

scp -i your-private-key.pem -r theme-files-on-your-local-machine

Configuring HTTPS For Your Site Using Let’s Encrypt

To configure Let’s Encrypt for your site use the Bitnami HTTPS Configuration Tool and answer the prompts on the command line:

sudo /opt/bitnami/bncert-tool