# Identity and access management in VPC Flow Logs
<a name="flow-logs-iam"></a>

Amazon uses security credentials to identify you and to grant you access to your Amazon resources. You can use features of Amazon Identity and Access Management (IAM) to allow other users, services, and applications to use your Amazon resources fully or in a limited way, without sharing your security credentials.

This section describes the Amazon service-linked roles that are created specifically for VPC Flow Logs and the managed policies attached to the VPC Flow Logs service-linked roles. For more information about Amazon IAM roles and policies, see [Roles terms and concepts](https://docs.amazonaws.cn/IAM/latest/UserGuide/id_roles.html#id_roles_terms-and-concepts) in the *IAM User Guide*.

For more information about identity and access management for VPC, see [Identity and access management for Amazon VPC](https://docs.amazonaws.cn/vpc/latest/userguide/security-iam.html) in the *Amazon VPC User Guide*.

**Topics**
+ [Using service-linked roles for VPC Flow Logs](flow-logs-slr.md)
+ [Amazon managed policies for VPC Flow Logs](flow-logs-managed-policy.md)