DEVHIDE
Login Or Sign up

S3 Bucket Policy to grant ListBucket permission to all users of a different AWS account

53 Views Asked by At

I have an Amazon S3 bucket in Account A.

I would like to grant ListBucket permission on this bucket to all users in Account B.

I tried to write an S3 Bucket Policy using a Principal of:

"Principal": {
    "AWS":"arn:aws:iam::<account_b>:user/*"
},

But I get an error:

Unknown Error
An unexpected error occurred.
API response
Invalid principal in policy

Is there a way that I can grant this permission?

amazon-web-services amazon-s3 amazon-iam aws-policies
Original Q&A
1

There are 1 best solutions below

2
On BEST ANSWER

When giving access to users in the other account, it's enough that you put just the account number as the principal:

"Principal": {
    "AWS":"<account_b_number>"
},

It is also required that users in account b have access to the bucket defined in their IAM policy.

Related Questions in AMAZON-WEB-SERVICES

Related Questions in AMAZON-S3

Related Questions in AMAZON-IAM

Related Questions in AWS-POLICIES

Trending Questions

Popular # Hahtags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Popular Questions

Copyright © 2021 Jogjafile Inc.