Skip to main content
NetApp Response to Russia-Ukraine Cyber Threat
In response to the recent rise in cyber threat due to the Russian-Ukraine crisis, NetApp is actively monitoring the global security intelligence and updating our cybersecurity measures. We follow U.S. Federal Government guidance and remain on high alert. Customers are encouraged to monitor the Cybersecurity and Infrastructure Security (CISA) website for new information as it develops and remain on high alert.
NetApp Knowledge Base

What IAM policy permissions does AltaVault need to access Amazon AWS S3 or Glacier?

Views:
102
Visibility:
Public
Votes:
0
Category:
altavault
Specialty:
dp
Last Updated:

 

Applies to

  • AltaVault
  • Amazon

Answer

AWS Identity and Access Management (IAM) is a framework that allows you to control access to AWS resources, including S3 and Glacier. The following is an example IAM policy for AltaVault:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "Stmt1394143726000",
            "Effect": "Allow",
            "Action": [
                "s3:ListAllMyBuckets"
            ],
            "Resource": [
            "arn:aws:s3:::*"
            ]
        },
        {
            "Sid": "Stmt1394143742000",
            "Effect": "Allow",
            "Action": [
                "s3:CreateBucket",
                "s3:GetBucketLocation",
                "s3:ListBucket",
                "s3:ListBucketMultipartUploads",
                "s3:GetLifecycleConfiguration",
                "s3:PutLifecycleConfiguration"
            ],
            "Resource": [
                "arn:aws:s3:::bucket_name"
            ]
        },
        {
            "Sid": "Stmt1394143790000",
            "Effect": "Allow",
            "Action": [
                "s3:AbortMultipartUpload",
                "s3:DeleteObject",
                "s3:ListMultipartUploadParts",
                "s3:GetObject",
                "s3:PutObject",
                "s3:RestoreObject"
            ],
            "Resource": [
                "arn:aws:s3:::bucket_name/*"
            ]
        }
    ]
}

 

Additional Information

Add your text here.

 

Scan to view the article on your device