AWS uses IAM roles and policies to grant permissions to launch EC2 instances and
update records in Route 53. The IAM roles for the cluster manager and transfer nodes
require you to first configure policies, which are later attached to the role to manage
permissions for the role. The following describes how to create the S3 IAM
role.
-
Go to IAM. Select Policies from
the Details sidebar.
-
Click Create Policy. Click Select
for the Create Your Own Policy option.
-
Name the new policy "atc-s3-full-access-policy".
-
Enter the following policy into the Policy Document
field.
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"s3:*"
],
"Resource": [
"*"
]
}
]
}
-
Click Create Policy.