aws Verified current stable Not installed? Security

Aws / List Iam Users

List Iam Users

Lists existing IAM users.

Terminal

aws iam list-users

aws iam list-users

#!/bin/bash

# List Iam Users
aws iam list-users

import subprocess

# List Iam Users
# Make sure to replace <placeholders> with actual values
def run_command():
    cmd = [
        "aws",
        "iam",
        "list-users"
    ]
    
    try:
        print(f"Executing: {' '.join(cmd)}")
        subprocess.run(cmd, check=True)
    except subprocess.CalledProcessError as e:
        print(f"Error: {e}")
    except FileNotFoundError:
        print("Error: aws not found. Please install it first.")

if __name__ == "__main__":
    run_command()

When To Use

When reviewing all IAM users for compliance audits or permissions assessments.

Pro Tip

Use `--query` to filter users based on specific criteria to eliminate noise in results.

Terminal Output

Expected runtime feedback

Simulated preview

Output

--------------------------------------------------------------------------------
|                     UserName                     |            UserId            |  Arn  |
--------------------------------------------------------------------------------
|                Alice                                |  AIDI1234567890123          |  arn:aws:iam::123456789012:user/Alice  |
|                Bob                                  |  AIDI9876543210987          |  arn:aws:iam::123456789012:user/Bob    |
|                Charlie                               |  AIDI4567890123456          |  arn:aws:iam::123456789012:user/Charlie |
--------------------------------------------------------------------------------

Anatomy of Output

Understanding the result

UserId: AIDAEXAMPLEID User Identifier

Unique identifier for the IAM user.

UserName: jdoe User Name

The display name of the IAM user.

CreateDate: 2023-01-15T12:00:00Z Creation Date

Date when the user was created in the AWS account.

Power User Variants

Optimized versions

aws iam list-users --max-items 5

Limits results to 5 IAM users for quicker viewing.

aws iam list-users --query 'Users[?starts_with(UserName, `j`)]'

Filters users whose names begin with 'j'.

aws iam list-users --profile user-profile

Lists users based on a specific AWS CLI profile.

Troubleshooting

Common pitfalls

An error occurred (NoSuchEntity) when calling the ListUsers operation: User does not exist.

Solution: Verify the IAM user listed does match actual users in the account.

An error occurred (AccessDenied) when calling the ListUsers operation: User is not authorized to perform this operation.

Solution: Check IAM permissions to ensure user has list access for IAM users.

An error occurred (ServiceFailure) when calling the ListUsers operation: Service error occurred.

Solution: Retry command; this may indicate temporary service issues.

Command Breakdown

What each part is doing

aws: Base Command; The executable that performs this operation. Here it runs Aws before the shell applies any redirect operators.

How To Run

Execution path

Step 1
Run the command: `aws iam list-users`
Step 2
Verify the output shows a list of IAM users with their details.

Alternative Approaches

Comparable commands in other tools

Alternative security tools for the same job.

John / Crack Password Hashes Custom Wordlist john --wordlist=<path/to/wordlist.txt> <path/to/hashes.txt> Show / Show User Authorities show grants for <username>; John / List Available Hash Formats john --list=formats Olevba / Analyze File Show Macro Code And Results olevba <path/to/file>