IAM User Policy JSON

IAM User Policy JSON

Below policy should be created and attached to the respective IAM User for performing the successful Batch Operation:

Note : The highlighted part in the below policy [Account ID & Bucket Name] should be replaced with the respective user details.

{

"Version": "2012-10-17",

"Statement": [

{

"Sid": "VisualEditor0",

"Effect": "Allow",

"Action": [

"s3:ListAllMyBuckets",

"s3:ListBucket"

],

"Resource": "arn:aws:s3:::*"

},

{

"Sid": "VisualEditor1",

"Effect": "Allow",

"Action": [

"iam:CreateRole",

"iam:CreatePolicy",

"iam:AttachRolePolicy",

"iam:AttachUserPolicy"

],

"Resource": [

"arn:aws:iam::Account_ID:role/*",

"arn:aws:iam::Account_ID:policy/*",

"arn:aws:iam::Account_ID:user/*"

]

},

{

"Sid": "VisualEditor3",

"Effect": "Allow",

"Action": [

"s3:ListBucket",

"s3:PutObject",

"s3:PutObjectAcl",

"s3:PutObjectTagging",

"s3:PutObjectVersionTagging",

"s3:PutObjectVersionAcl",

"s3:PutObjectRetention",

"s3:DeleteObject",

"s3:DeleteObjectVersion",

"s3:GetObject",

"s3:GetObjectAcl",

"s3:GetObjectTagging",

"s3:BypassGovernanceRetention",

"s3:GetObjectVersion",

"s3:GetBucketLocation",

"s3:CreateJob",

"s3:ListBucket",

"s3:ListBucketMultipartUploads",

"s3:ListMultipartUploadParts",

"s3:AbortMultipartUpload",

"s3:PutLifecycleConfiguration",

"s3:GetLifecycleConfiguration",

"s3:GetBucketObjectLockConfiguration",

"s3:ListBucketVersions"

],

"Resource": [

"arn:aws:s3:::BucketName",

"arn:aws:s3:::BucketName/*"

]

}

]

}

 


    • Related Articles

    • IAM user policy

      Below policy should be created and attached to the respective IAM User for performing the successful Batch Operation: Note : The highlighted part in the below policy [Account ID & Bucket Name] should be replaced with the respective user details. { ...

    • Configuring Google Workspace User Mailbox Backup

      Configuring Google Workspace Backup includes the backup of user mailboxes, ensuring that emails, contacts, calendar entries, and other critical mailbox data are securely protected. This enables easy recovery of individual user data in case of ...

    • BDRSuite/ BDRCloud - Bulk Installation of Backup Agents - Group Policy Object (GPO) Deployment:

      KB ID: 115216 Overview This guide provides step-by-step instructions for deploying the BDRSuite Delegation Service or BDRCloud Backup Agent to multiple endpoints using Group Policy Objects (GPO). It includes the process for generating MST files using ...

    • Restore User Mailbox

      The backed up Microsoft 365 User Mailbox (Mailbox, Mails, Archive Mailbox, OneDrive, Calendar Events & Contacts) can be granularly restored by log in to BDRSuite Backup Server using the BDRSuite Backup Server log in credentials. Also, the backed up ...

    • What is per-user license?

      A user is equivalent to one of the following: 1 Microsoft 365 User 1 Google Workspace User Example: If you have Microsoft 365 Organization with 100 Users and you want to backup only 75 users, you need to buy 75 user licenses.