PDF (US Ltr)
- 1.0Mb
20.5.2 Creating an IAM Role to Access an Amazon S3 Bucket
Use the AWS Management Console to create an IAM role for accessing an
Amazon S3 bucket (see Using an external ID for third-party
access for more information on the topic).
This task requires the following:
- Access to AWS Management Console.
- IAM policy that specifies the Amazon S3 and/or KMS permissions required for the feature you want to use. See Creating an IAM Policy to Access an Amazon S3 Bucket.
- The tenancy Oracle Cloud Identifier (OCID). To view the OCID of the tenancy, see Viewing OCID of the Tenancy.
- If you want to grant access to a specific DB System, the resource ID of the DB System.
- The name of the Amazon S3 bucket you want to grant access to.
- Sufficient IAM permissions for creating the IAM roles.
Do the following to create an IAM role:
After you create the role, enter the role ARN in an exisiting DB System, or create a new DB System and enter the ARN
details. See Editing a DB System and Creating a DB System.
Parent topic: Manage AWS Access