Grant user access to specific folder in AWS S3 Bucket

S3_Bucket_Folder_Permission_Add_IAM_User

A user can be provided access to specific folder in Amazon AWS S3 bucket instead of granting full access.  Here are the steps to generate IAM policy and limit access to S3 bucket folder.

Step 1:Copy ARN

  • Choose the S3 bucket folder that you would like to give access. Copy ARN
    S3_Bucket_Folder_Permission_Copy_ARN

Step 2: Generate Policy and copy the JSON

  • Open website https://awspolicygen.s3.amazonaws.com/policygen.html. Generate Policy and copy the JSON

S3_Bucket_Folder_Permission_Policy_Generator
Step 3: Create IAM Policy

  • Open IAM > Policies > Create Policy

S3_Bucket_Folder_Permission_IAM_Policy

HostGator $2.75 per month
HostGator
24/7/365 Technical Support, Free Site Building Tools, 4500 Website Templates, Free Shopping Cart Software, Ideal for WordPress, 45 Day Money Back Guarantee

  • Choose JSON and paste the policy created in Step 2
  • Specify Name to complete creation of IAM policy

Step 4: Create an IAM user and attach IAM policy

  • Create an IAM user and check ‘Access Type’ and ‘AWS Management Console access’

S3_Bucket_Folder_Permission_Add_IAM_User

  • Assign the policy that was recently created and you are done!

Once the IAM user logs in to AWS Console, you need to provide the exact path to S3 bucket folder location in order to access.