IAM user policy
Below policy should be created and attached to the respective IAM User for performing the successful Batch Operation:
Note : The highlighted part in the below policy [Account ID & Bucket Name] should be replaced with the respective user details.{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": [
"s3:ListAllMyBuckets",
"s3:ListBucket"
],
"Resource": "arn:aws:s3:::*"
},
{
"Sid": "VisualEditor1",
"Effect": "Allow",
"Action": [
"iam:CreateRole",
"iam:CreatePolicy",
"iam:AttachRolePolicy",
"iam:AttachUserPolicy"
],
"Resource": [
"arn:aws:iam::Account_ID:role/*",
"arn:aws:iam::Account_ID:policy/*",
"arn:aws:iam::Account_ID:user/*"
]
},
{
"Sid": "VisualEditor3",
"Effect": "Allow",
"Action": [
"s3:ListBucket",
"s3:PutObject",
"s3:PutObjectAcl",
"s3:PutObjectTagging",
"s3:PutObjectVersionTagging",
"s3:PutObjectVersionAcl",
"s3:PutObjectRetention",
"s3:DeleteObject",
"s3:DeleteObjectVersion",
"s3:GetObject",
"s3:GetObjectAcl",
"s3:GetObjectTagging",
"s3:BypassGovernanceRetention",
"s3:GetObjectVersion",
"s3:GetBucketLocation",
"s3:CreateJob",
"s3:ListBucket",
"s3:ListBucketMultipartUploads",
"s3:ListMultipartUploadParts",
"s3:AbortMultipartUpload",
"s3:PutLifecycleConfiguration",
"s3:GetLifecycleConfiguration",
"s3:GetBucketObjectLockConfiguration",
"s3:ListBucketVersions"
],
"Resource": [
"arn:aws:s3:::BucketName",
"arn:aws:s3:::BucketName/*"
]
}
]
}
Related Articles
IAM User Policy JSON
Below policy should be created and attached to the respective IAM User for performing the successful Batch Operation: Note : The highlighted part in the below policy [Account ID & Bucket Name] should be replaced with the respective user details. { ...Configuring Immutable Storage with Object Storage Repository
KB ID: 190027 Objective: This KB article provides step-by-step guidance on configuring an Object Storage Repository as Immutable Storage in Amazon S3 and S3-compatible clouds. This involves enabling Object Locking and implementing the required IAM ...Configuring Object Storage Repository as Immutable Storage
KB ID: 190026 Overview: Configuring an Object Storage Repository as Immutable Storage requires specific permissions to be granted. This article delineates the essential permissions and presents the JSON format of an IAM user policy necessary for ...Configuring Google Workspace User Mailbox Backup
Configuring Google Workspace Backup includes the backup of user mailboxes, ensuring that emails, contacts, calendar entries, and other critical mailbox data are securely protected. This enables easy recovery of individual user data in case of ...BDRSuite/ BDRCloud - Bulk Installation of Backup Agents - Group Policy Object (GPO) Deployment:
KB ID: 115216 Overview This guide provides step-by-step instructions for deploying the BDRSuite Delegation Service or BDRCloud Backup Agent to multiple endpoints using Group Policy Objects (GPO). It includes the process for generating MST files using ...