1 Answer
- Newest
- Most votes
- Most comments
1
Hey,
To allow an AWS Image Builder Pipeline to download files from an S3 bucket, you need to grant the appropriate IAM permissions to the instance profile (role) used by the pipeline.
The following IAM policies must be attached to the IAM role that is associated with the instance profile, in other words, the instance for your pipeline:
- Single file: s3:GetObject against the bucket/object (for example, arn:aws:s3:::BucketName/*).
- Multiple files: s3:ListBucket against the bucket/object (for example, arn:aws:s3:::BucketName) and s3:GetObject against the bucket/object (for example, arn:aws:s3:::BucketName/*).
This is documented in more detail here
Relevant content
- asked 6 months ago
- asked a year ago
- asked 3 years ago
- AWS OFFICIALUpdated 6 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 5 months ago