Set CTERA Portal Resource Access in IAM

This section is relevant only if you are using IAM.

To set CTERA Portal resource access in the IAM

1. Log in to your Amazon Web Services account.
2. In the Amazon Web Services > Deployment & Management area, click IAM.

   The IAM Dashboard screen appears.

   

3. In the Users tab, in the upper pane, select the check box next to your user account.
4. In the lower pane, click the Permissions tab.

   The Permissions tab appears.

   

5. Click Attach User Policy.

   The Manage User Permissions window opens displaying the Set Permissions dialog box.

   

6. If you are required to comply with a strict security policy, do the following:
   1. Choose Policy Generator.
   2. Click Select.

      The Edit Permissions dialog box appears.

      

   3. Allow actions for the Amazon EC2 and Amazon S3 services, by doing the following for each action:
      1. In the Effect field, choose Allow.
      2. In the AWS Service drop-down list, select the service (Amazon EC2 or Amazon S3).
      3. In the Actions drop-down list, select the desired action.
      4. Click Add Statement.

      The actions that you must allow for the Amazon EC2 service are:

      • CreateSnapshot
      • DescribeVolumes
      • DescribeSnapshots
      • DeleteSnapshot
      • AttachVolume
      • DetachVolume

      The actions you must allow for the Amazon S3 service are:

      • CreateBucket
      • DeleteObject
      • GetObject
      • ListAllMyBuckets
      • ListBucket
      • PutObject
   4. Click Continue.
7. If you are not required to comply with a strict security policy, do the following:
   1. Choose Select Policy Template.

      The Select Policy Template area opens.

      

   2. Next to Power User Access, click Select.

      The Set Permissions dialog box opens.

      

   3. Click Apply Policy.