IAM User Policy JSON

IAM User Policy JSON

Below policy should be created and attached to the respective IAM User for performing the successful Batch Operation:

Note : The highlighted part in the below policy [Account ID & Bucket Name] should be replaced with the respective user details.

{

"Version": "2012-10-17",

"Statement": [

{

"Sid": "VisualEditor0",

"Effect": "Allow",

"Action": [

"s3:ListAllMyBuckets",

"s3:ListBucket"

],

"Resource": "arn:aws:s3:::*"

},

{

"Sid": "VisualEditor1",

"Effect": "Allow",

"Action": [

"iam:CreateRole",

"iam:CreatePolicy",

"iam:AttachRolePolicy",

"iam:AttachUserPolicy"

],

"Resource": [

"arn:aws:iam::Account_ID:role/*",

"arn:aws:iam::Account_ID:policy/*",

"arn:aws:iam::Account_ID:user/*"

]

},

{

"Sid": "VisualEditor3",

"Effect": "Allow",

"Action": [

"s3:ListBucket",

"s3:PutObject",

"s3:PutObjectAcl",

"s3:PutObjectTagging",

"s3:PutObjectVersionTagging",

"s3:PutObjectVersionAcl",

"s3:PutObjectRetention",

"s3:DeleteObject",

"s3:DeleteObjectVersion",

"s3:GetObject",

"s3:GetObjectAcl",

"s3:GetObjectTagging",

"s3:BypassGovernanceRetention",

"s3:GetObjectVersion",

"s3:GetBucketLocation",

"s3:CreateJob",

"s3:ListBucket",

"s3:ListBucketMultipartUploads",

"s3:ListMultipartUploadParts",

"s3:AbortMultipartUpload",

"s3:PutLifecycleConfiguration",

"s3:GetLifecycleConfiguration",

"s3:GetBucketObjectLockConfiguration",

"s3:ListBucketVersions"

],

"Resource": [

"arn:aws:s3:::BucketName",

"arn:aws:s3:::BucketName/*"

]

}

]

}

 


    • Related Articles

    • IAM user policy

      Below policy should be created and attached to the respective IAM User for performing the successful Batch Operation: Note : The highlighted part in the below policy [Account ID & Bucket Name] should be replaced with the respective user details. { ...

    • Configuring Immutable Storage with Object Storage Repository

      KB ID: 190027 Objective: This KB article provides step-by-step guidance on configuring an Object Storage Repository as Immutable Storage in Amazon S3 and S3-compatible clouds. This involves enabling Object Locking and implementing the required IAM ...

    • Configuring Object Storage Repository as Immutable Storage

      KB ID: 190026 Overview: Configuring an Object Storage Repository as Immutable Storage requires specific permissions to be granted. This article delineates the essential permissions and presents the JSON format of an IAM user policy necessary for ...

    • Prerequisites to add AWS Account

      Prerequisites to Add AWS Accounts It is necessary to Create & Attach a Policy to the User and set up Access Key ID & Secret access key as a prerequisite action to further proceed with adding the AWS Account. 1. Create & Attach Policy to User Create a ...

    • Configuring Google Workspace User Mailbox Backup

      Configuring Google Workspace Backup includes the backup of user mailboxes, ensuring that emails, contacts, calendar entries, and other critical mailbox data are securely protected. This enables easy recovery of individual user data in case of ...