2 Answers
- Newest
- Most votes
- Most comments
4
Hi,
You'd need to create an IAM policy first with the permissions listed in the mentioned document
- Go to IAM Policy console
- Click Create policy
- Click JSON tab at top right OR you can do through Visual as well by selecting those actions one by one
- Add those actions which are mentioned in the doc, to Action part of the policy
- Click Next
- Give this policy a name
Here is how JSON document would look like for the policy if I include all the actions as listed under section Setting account permissions to use S3 Storage Lens in the above mentioned document. You can add/remove actions based on your requirement and add resource arn instead of '*':
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": [
"s3:ListStorageLensConfigurations",
"s3:GetStorageLensConfiguration",
"s3:DeleteStorageLensConfigurationTagging",
"s3:PutStorageLensConfigurationTagging",
"s3:PutStorageLensConfiguration",
"s3:GetStorageLensConfigurationTagging",
"s3:GetStorageLensDashboard"
],
"Resource": "*"
}
]
}
Once you would have created the policy then you can assign this policy to that IAM user which would be used to access Storage Lens.
Hope you find this helpful.
Comment here if you have additional questions, happy to help.
Abhishek
0
Thanks so much Abhishek. That was the missing piece. Hope they add that to the documentation to help new, non-technical users.
answered 9 months ago
Relevant content
- asked 10 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 4 years ago
- AWS OFFICIALUpdated 10 months ago
- AWS OFFICIALUpdated a year ago
I'm glad it worked for you.