-
Private
0Hello,
I have an AWS account with multiple buckets. One computer should not be allowed to access or ideally even see any other buckets.
Can I set up CloudBerry Backup access to a single S3 bucket and provide keys only to that bucket but not to the entire AWS account?
Can I set it up so that only one bucket is visible and no other buckets are visible, even their names?
If not possible, even if names of other buckets are visible, can i restrict access to only one bucket so that no contents of other buckets would be accessible (not even see the file names)
Thank you -
gxvigo
0Hi,
This IAM policy will allow CloudBerry to list all buckets and only access the <my-bucket>
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"s3:GetObject",
"s3:ListBucket",
"s3:PutObject",
"s3:Describe*",
"s3:PutObjectAcl",
"s3:AbortMultipartUpload",
"s3:ListBucketMultipartUploads",
"s3:ListMultipartUploadParts",
"s3:RestoreObject"
],
"Resource": [
"arn:aws:s3:::<my-bucket>",
"arn:aws:s3:::<my-bucket>/*"
]
},
{
"Effect": "Allow",
"Action": [
"s3:ListAllMyBuckets"
],
"Resource": [
"*"
]
}
]
}
If you don't want to list all buckets, remove the second json statement (ListAllMyBuckets)
Welcome to MSP360 Forum!
Thank you for visiting! Please take a moment to register so that you can participate in discussions!
Categories
- MSP360 Managed Products
- Managed Backup - General
- Managed Backup Windows
- Managed Backup Mac
- Managed Backup Linux
- Managed Backup SQL Server
- Managed Backup Exchange
- Managed Backup Microsoft 365
- Managed Backup G Workspace
- RMM
- Connect (Managed)
- Deep Instinct
- CloudBerry Backup
- Backup Windows
- Backup Mac
- Backup for Linux
- Backup SQL Server
- Backup Exchange
- Connect Free/Pro (Remote Desktop)
- CloudBerry Explorer
- CloudBerry Drive
More Discussions
- Terms of Service
- Useful Hints and Tips
- Sign In
- © 2024 MSP360 Forum