Amazon.com, Inc.
Managing non-persistent privileged and non-privileged operator access to infrastructure systems hosted in a cloud computing environment

Abstract:

Techniques for managing access to infrastructure components hosted in a cloud computing environment are provided. One technique includes receiving a request from a user to access a single infrastructure component of multiple infrastructure components hosted in the cloud computing environment. At least one of a current operating state of the cloud computing environment and a context of the user is determined in response to the request. A determination is made to grant the user access to the single infrastructure component, based on an analysis of at least one of the current operating state and the context of the user. In response to the determination, a credential is retrieved that is specific to the single infrastructure component and is valid for a temporary amount of time. The credential is provided to the user.