Fortinet black logo

Online Help

Home FortiCASB 24.1.b Online Help

AWS Policy Creation

24.1.b
24.1.b
24.1.a
23.4.a
23.3.a
23.2.b
23.2.a
23.1.0
22.4.0
21.4.0
21.2.0
21.1.0
20.4.1
20.4.0
20.3.0
20.2.0
20.1.0
4.2.0
4.1.0
2.1.0
Copy Link
Copy Doc ID df548089-ec91-11ee-8c42-fa163e15d75b:620001

AWS Policy Creation

  1. Go to your AWS console dashboard, search and click IAM.
  2. Click Policies from the left navigation menu.

  3. Click Create policy, and go to JSON tab.
  4. Replace the existing JSON code with the following:

    5. {

    "Version": "2012-10-17",

    "Statement": [

    {

    "Action": [

    "s3:Get*",

    "s3:List*",

    "s3:Put*",

    "s3:Delete*",

    "s3:CreateBucket",

    "iam:List*",

    "iam:Get*",

    "cloudtrail:LookupEvents",

    "cloudtrail:GetTrailStatus",

    "cloudtrail:DescribeTrails",

    "cloudtrail:ListTags",

    "cloudtrail:GetEventSelectors",

    "config:Get*",

    "config:Describe*",

    "config:Deliver*",

    "config:List*"

    ],

    "Resource": "*",

    "Effect": "Allow"

    }

    ]

    }

  5. Click Review policy.
  6. Name the new policy, e.g. , "forticasb_authentication".
  7. Click Create policy.

Your new policy will be created.

Please keep your policy name later for role creation.
For the purpose behind the AWS services being used to create the custom policy, please refer to Appendix A - Amazon Policy Usage.

Previous
Next

AWS Policy Creation

  1. Go to your AWS console dashboard, search and click IAM.
  2. Click Policies from the left navigation menu.

  3. Click Create policy, and go to JSON tab.
  4. Replace the existing JSON code with the following:

    5. {

    "Version": "2012-10-17",

    "Statement": [

    {

    "Action": [

    "s3:Get*",

    "s3:List*",

    "s3:Put*",

    "s3:Delete*",

    "s3:CreateBucket",

    "iam:List*",

    "iam:Get*",

    "cloudtrail:LookupEvents",

    "cloudtrail:GetTrailStatus",

    "cloudtrail:DescribeTrails",

    "cloudtrail:ListTags",

    "cloudtrail:GetEventSelectors",

    "config:Get*",

    "config:Describe*",

    "config:Deliver*",

    "config:List*"

    ],

    "Resource": "*",

    "Effect": "Allow"

    }

    ]

    }

  5. Click Review policy.
  6. Name the new policy, e.g. , "forticasb_authentication".
  7. Click Create policy.

Your new policy will be created.

Please keep your policy name later for role creation.
For the purpose behind the AWS services being used to create the custom policy, please refer to Appendix A - Amazon Policy Usage.

Previous
Next