Amazon S3 - privileges required for custom security policy

If you need/wish to set a custom Security Policy for SyncBackPro with respect to permitting it access to your Amazon S3 account, these should include the following privileges:


GetObject

PutObject

DeleteObject

ListMultipartUploadParts

AbortMultipartUpload


RestoreObject (if using Glacier and need to restore from it)


CreateBucket

DeleteBucket

ListBucket

ListAllMyBuckets

ListBucketMultipartUploads

GetBucketLocation


Note that the privilege ListAllMyBuckets is only required in the profile configuration window so that you can choose from available buckets. If you do not have this privilege then you can manually enter the bucket name in the profile by right-clicking on the bucket list in the Cloud configuration window and selecting Add Bucket from the pop-up menu.


The CreateBucket and DeleteBucket privileges are also only used in the profile configuration window so you can create and delete buckets. If you do not have these privileges then it will not affect the running of a profile.


Applies to: SyncBackPro V6 and later only.