[Yandex Cloud documentation](../../index.md) > [Yandex Identity and Access Management](../index.md) > Step-by-step guides > All guides

# Step-by-step guides for Identity and Access Management

## Publicly available secrets {#credentials}

- [Processing secrets that have become publicly available](compromised-credentials.md)

## Users {#users}

To learn more about user management, see [this Yandex Identity Hub guide](../../organization/operations/manage-users.md).

## User groups {#users-groups}

To learn more about user group management, see [this Yandex Identity Hub guide](../../organization/operations/manage-groups.md).

## Service accounts {#sa}

- [Creating a service account](sa/create.md)
- [Getting a list of the folder's service accounts](sa/list-get.md)
- [Updating a service account](sa/update.md)
- [Assigning roles to a service account](sa/assign-role-for-sa.md)
- [Setting up service account access permissions](sa/set-access-bindings.md)
- [Using impersonation](sa/impersonate-sa.md)
- [Getting service account info](sa/get-id.md)
- [Deleting a service account](sa/delete.md)
- [Getting a service account ID token](sa/get-id-token.md)

## Identity federations {#federations}

The guides on managing identity federations are now included in the Yandex Identity Hub [documentation](../../organization/index.md).

## Access policies {#access-policies}

- [Getting a list of supported access policy templates](access-policies/list.md)
- [Creating an access policy for a resource](access-policies/assign.md)
- [Viewing access policies created for a resource](access-policies/view-assigned.md)
- [Deleting an access policy](access-policies/revoke.md)

## Roles {#roles}

- [Assigning roles](roles/grant.md)
- [Viewing assigned roles](roles/get-assigned-roles.md)
- [Revoke a role for a resource](roles/revoke.md)

## Authentication {#authentication}

- [Getting an IAM token for a Yandex account](iam-token/create.md)
- [Getting an IAM token for a service account](iam-token/create-for-sa.md)
- [Getting an IAM token for a federated account](iam-token/create-for-federation.md)
- [Getting an IAM token for a local user account](iam-token/create-for-local.md)
- [Reissue an IAM token](compromised-credentials.md#iam-reissue)
- [Getting a list of refresh tokens](refresh-token/list.md)
- [Revoking a refresh token](refresh-token/revoke.md)
- [Managing static access keys](authentication/manage-access-keys.md)
- [Managing API keys](authentication/manage-api-keys.md)
- [Managing authorized keys](authentication/manage-authorized-keys.md)
- [Creating a temporary access key using Security Token Service](sa/create-sts-key.md)

## Service control {#service-control}

{% note info %}

This feature is at the [Preview](../../overview/concepts/launch-stages.md) stage.

{% endnote %}

- [Getting the status of services](service-control/list-get.md)
- [Enabling and disabling a service](service-control/enable-disable.md)

## Workload identity federations {#wlif}

- [Setting up workload identity federations](wlif/setup-wlif.md)