How to provide Data level Access to S3?

+1 vote
I have a scenario where in after creating relevant Service based roles for all IAM users as to which services can be accessed , I now have to add additional security at Tag level or individual bucket level.

Eg - If "A" user has access to S3 and EMR and "B " user has access to S3 , Redshift and I have X, Y , Z Buckets in my account .

How do I have A only access to X , Y and B only access to Z bucket . In future If I add 100 more users , I need to create 100 more policies , any alternative way or how to address this.
Nov 11 in AWS by Bharat
• 160 points
87 views

2 answers to this question.

0 votes
Hello Bharat,

You can create a group policy and add all the IAMs you wish to give access (S3 buckets). Just give the group policy the access to the S3 buckets.

Next, if you have 10 or 100 other IAM roles requiring this access, all you'll have to do is add them to this group.
answered Nov 19 by Eric
+1 vote
You can create IAM groups and assign policy to it. In case u want to add more users you can select a group in which you want to add that user and the the group policy will automatically get assigned to the user
answered Nov 22 by Vijay
Hello Vijay! I hope you are doing good. Please register to Edureka Community and then answer to get more points and rewards.

Related Questions In AWS

0 votes
2 answers

How to access files in S3 bucket from R?

You can take a look at the ...READ MORE

answered Aug 10, 2018 in AWS by Deepthi
• 300 points
1,467 views
0 votes
1 answer
0 votes
1 answer

how to access AWS S3 from Lambda in VPC

With boto3, the S3 urls are virtual by default, ...READ MORE

answered Sep 28, 2018 in AWS by Priyaj
• 56,960 points
2,270 views
+1 vote
3 answers

How to get ARN for s3 Bucket using aws cli .

An ARN is a non-opaque, constructible identifier, ...READ MORE

answered Aug 16, 2018 in AWS by Priyaj
• 56,960 points
1,660 views
0 votes
1 answer

Trying to upload data stream in Amazon S3

Try adding the ContentType & ACL in ...READ MORE

answered Jun 28, 2018 in AWS by Cloud gunner
• 4,280 points
478 views
0 votes
1 answer

AWS S3 uploading hidden files by default

versioning is enabled in your bucket. docs.aws.amazon.com/AmazonS3/latest/user-guide/….... the ...READ MORE

answered Oct 4, 2018 in AWS by Priyaj
• 56,960 points
327 views
0 votes
1 answer

How to decrypt the encrypted S3 file using aws-encryption-cli --decrypt

Use command : aws s3 presign s3://mybucket/abc_count.png you get ...READ MORE

answered Oct 22, 2018 in AWS by Priyaj
• 56,960 points
737 views
0 votes
1 answer

Import my AWS credentials using python script

Using AWS Cli  Configure your IAM user then ...READ MORE

answered Nov 16, 2018 in AWS by Jino
• 5,560 points
516 views
0 votes
2 answers