使用 AWS re:Post 即表示您同意 AWS re:Post 使用條款
AWS re:Postre:Post

S3 prefix-selective cross-account permissions

0

Hi Experts I need to create selective permissions set on a single S3 bucket for different AWS accounts (either role or user) on a per prefix. example for the structure in the S3 bucket: my_s3_bucket/account1 my_s3_bucket/account2

I want to enable account1\2 programmatic access to put\get\delete objects on their corresponding prefixes without seeing\listing any other account`s prefix Is this a support pattern? If yes - how should it be implemented.

Thanks

主題
儲存空間安全性、身分識別與合規
標籤
Amazon Simple Storage ServiceAWS Identity and Access ManagementIAM 政策
語言
English
BoazG
已提問 1 年前檢視次數 281 次
1 個回答
0

Hi BoazG,

check out this blog from aws in wich it is configured with iam-users. But it should be the same procedure with external accounts.

Also you should configure it as a bucket resource policy.

https://aws.amazon.com/de/premiumsupport/knowledge-center/iam-s3-user-specific-folder/

profile picture
HeikoMR
已回答 1 年前

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南

相關內容