IBM Cloud® Identity and Access Management (IAM) provides secure access control that enable developers to do all sorts of useful things. For example, if an organization’s corporate security policies require that IBM Cloud credentials always be encrypted and rotated every week, developers can use IAM to securely provide credentials that write to the Cloudant Service.

IAM policy enables a subject to access a resource. There are three primary values in a policy: a subject, roles, and resources.