IAM User Policy JSON

IAM User Policy JSON

Below policy should be created and attached to the respective IAM User for performing the successful Batch Operation:

Note : The highlighted part in the below policy [Account ID & Bucket Name] should be replaced with the respective user details.

{

"Version": "2012-10-17",

"Statement": [

{

"Sid": "VisualEditor0",

"Effect": "Allow",

"Action": [

"s3:ListAllMyBuckets",

"s3:ListBucket"

],

"Resource": "arn:aws:s3:::*"

},

{

"Sid": "VisualEditor1",

"Effect": "Allow",

"Action": [

"iam:CreateRole",

"iam:CreatePolicy",

"iam:AttachRolePolicy",

"iam:AttachUserPolicy"

],

"Resource": [

"arn:aws:iam::Account_ID:role/*",

"arn:aws:iam::Account_ID:policy/*",

"arn:aws:iam::Account_ID:user/*"

]

},

{

"Sid": "VisualEditor3",

"Effect": "Allow",

"Action": [

"s3:ListBucket",

"s3:PutObject",

"s3:PutObjectAcl",

"s3:PutObjectTagging",

"s3:PutObjectVersionTagging",

"s3:PutObjectVersionAcl",

"s3:PutObjectRetention",

"s3:DeleteObject",

"s3:DeleteObjectVersion",

"s3:GetObject",

"s3:GetObjectAcl",

"s3:GetObjectTagging",

"s3:BypassGovernanceRetention",

"s3:GetObjectVersion",

"s3:GetBucketLocation",

"s3:CreateJob",

"s3:ListBucket",

"s3:ListBucketMultipartUploads",

"s3:ListMultipartUploadParts",

"s3:AbortMultipartUpload",

"s3:PutLifecycleConfiguration",

"s3:GetLifecycleConfiguration",

"s3:GetBucketObjectLockConfiguration",

"s3:ListBucketVersions"

],

"Resource": [

"arn:aws:s3:::BucketName",

"arn:aws:s3:::BucketName/*"

]

}

]

}

 


    • Related Articles

    • IAM user policy

      Below policy should be created and attached to the respective IAM User for performing the successful Batch Operation: Note : The highlighted part in the below policy [Account ID & Bucket Name] should be replaced with the respective user details. { ...

    • BDRSuite/ BDRCloud - Bulk Installation of Backup Agents - Group Policy Object (GPO) Deployment:

      KB ID: 115216 Overview This guide provides step-by-step instructions for deploying the BDRSuite Delegation Service or BDRCloud Backup Agent to multiple endpoints using Group Policy Objects (GPO). It includes the process for generating MST files using ...

    • Restore User Mailbox

      The backed up Microsoft 365 User Mailbox (Mailbox, Mails, Archive Mailbox, OneDrive, Calendar Events & Contacts) can be granularly restored by log in to BDRSuite Backup Server using the BDRSuite Backup Server log in credentials. Also, the backed up ...

    • What is per-user license?

      A user is equivalent to one of the following: 1 Microsoft 365 User 1 Google Workspace User Example: If you have Microsoft 365 Organization with 100 Users and you want to backup only 75 users, you need to buy 75 user licenses.

    • User Management (Create and Manage BDRSuite User Accounts)

      In this section, you will find an overview of “Users” feature in the BDRSuite Backup Server. Additionally, it provides detailed instructions on how to add and manage multiple users effectively. The user profile management feature provides the ...