IAM User Policy JSON

IAM User Policy JSON

Below policy should be created and attached to the respective IAM User for performing the successful Batch Operation:

Note : The highlighted part in the below policy [Account ID & Bucket Name] should be replaced with the respective user details.

{

"Version": "2012-10-17",

"Statement": [

{

"Sid": "VisualEditor0",

"Effect": "Allow",

"Action": [

"s3:ListAllMyBuckets",

"s3:ListBucket"

],

"Resource": "arn:aws:s3:::*"

},

{

"Sid": "VisualEditor1",

"Effect": "Allow",

"Action": [

"iam:CreateRole",

"iam:CreatePolicy",

"iam:AttachRolePolicy",

"iam:AttachUserPolicy"

],

"Resource": [

"arn:aws:iam::Account_ID:role/*",

"arn:aws:iam::Account_ID:policy/*",

"arn:aws:iam::Account_ID:user/*"

]

},

{

"Sid": "VisualEditor3",

"Effect": "Allow",

"Action": [

"s3:ListBucket",

"s3:PutObject",

"s3:PutObjectAcl",

"s3:PutObjectTagging",

"s3:PutObjectVersionTagging",

"s3:PutObjectVersionAcl",

"s3:PutObjectRetention",

"s3:DeleteObject",

"s3:DeleteObjectVersion",

"s3:GetObject",

"s3:GetObjectAcl",

"s3:GetObjectTagging",

"s3:BypassGovernanceRetention",

"s3:GetObjectVersion",

"s3:GetBucketLocation",

"s3:CreateJob",

"s3:ListBucket",

"s3:ListBucketMultipartUploads",

"s3:ListMultipartUploadParts",

"s3:AbortMultipartUpload",

"s3:PutLifecycleConfiguration",

"s3:GetLifecycleConfiguration",

"s3:GetBucketObjectLockConfiguration",

"s3:ListBucketVersions"

],

"Resource": [

"arn:aws:s3:::BucketName",

"arn:aws:s3:::BucketName/*"

]

}

]

}

 


    • Related Articles

    • IAM user policy

      Below policy should be created and attached to the respective IAM User for performing the successful Batch Operation: Note : The highlighted part in the below policy [Account ID & Bucket Name] should be replaced with the respective user details. { ...

    • Configuring Immutable Storage with Object Storage Repository

      KB ID: 190027 Objective: This KB article provides step-by-step guidance on configuring an Object Storage Repository as Immutable Storage in Amazon S3 and S3-compatible clouds. This involves enabling Object Locking and implementing the required IAM ...

    • Configuring Object Storage Repository as Immutable Storage

      KB ID: 190026 Overview: Configuring an Object Storage Repository as Immutable Storage requires specific permissions to be granted. This article delineates the essential permissions and presents the JSON format of an IAM user policy necessary for ...

    • Enabling Microsoft 365 User Login Support in BDRSuite

      KB ID: 303017 Overview: Enabling user access in BDRSuite allows Microsoft 365 Organization Users to log into the BDRSuite Backup console using their Microsoft account credentials. This access also empowers users to view their individual backup ...

    • Resolving Access Denied Error for MySQL 'Root' User in BDRSuite Clients

      KB ID: 72 Causes: The error typically occurs when the Linux machine where Vembu BDR is being installed lacks the Perl package. Without Perl, the installation process fails and results in the mentioned "Access Denied" error. Solution: To resolve the ...