AWS Policy Creation
- Go to your AWS console dashboard, search and click IAM.
- Click Policies from the left navigation menu.
- Click Create policy, and go to JSON tab.
- Replace the existing JSON code with the following:
- Click Review policy.
- Name the new policy, e.g. , "forticasb_authentication".
- Click Create policy.
{
"Version": "2012-10-17",
"Statement": [
{
"Action": [
"s3:Get*",
"s3:List*",
"s3:Put*",
"s3:Delete*",
"s3:CreateBucket",
"iam:List*",
"iam:Get*",
"cloudtrail:LookupEvents",
"cloudtrail:GetTrailStatus",
"cloudtrail:DescribeTrails",
"cloudtrail:ListTags",
"cloudtrail:GetEventSelectors",
"config:Get*",
"config:Describe*",
"config:Deliver*",
"config:List*"
],
"Resource": "*",
"Effect": "Allow"
}
]
}
Your new policy will be created.
Please keep your policy name later for role creation. |
For the purpose behind the AWS services being used to create the custom policy, please refer to Appendix A - Amazon Policy Usage. |