Child pages
  • How to Create an Amazon S3 Policy for a Bucket
Skip to end of metadata
Go to start of metadata

Overview

This document explains how to create a policy for a bucket in Amazon Web Service's Simple Storage Service (Amazon S3™).

Important:

Before you can create a policy, you must create a bucket in Amazon S3. To create a bucket in Amazon S3, read Amazon's Create a Bucket documentation.

Create a policy for the bucket

To create a policy with Amazon S3, perform the following steps:

  1. Log in to your AWS console.
  2. Under Security, Identity, & Compliance, click IAM.
  3. Click Policies in the left navigation menu.
  4. Click Get Started.

    Note:

    This option only displays the first time that you create a bucket. If this is not your first time to create a bucket, then this step will not display.

  5. Click Create Policy near the top of the interface.

  6. Click Select next to the Create your own policy option.
  7. Enter a policy name.
  8. Create a policy document that resembles the following example:

    {
        "Version": "2012-10-17",
        "Statement": [
            {
                "Sid": "CpFilePermission",
                "Effect": "Allow",
                "Action": [
                    "s3:*"
                ],
                "Resource": [
                    "arn:aws:s3:::$BUCKET/*",
                    "arn:aws:s3:::$BUCKET"
                ]
            }
        ]
    }

    Note:

    Replace all references to $BUCKET with your bucket name.

  9. Click Validate Policy to confirm that your policy specifications function properly.

  10. Click Create Policy.

Additional documentation