amazon web services - Policy to block s3 upload based on ec2 instance tag -
is there way apply restriction in s3 buckets using ec2 instance tag.
we have couple of ec2 instances. want allow upload s3 ec2 instances have specific tag.
no, not possible write policy restricts upload amazon s3 come amazon ec2 instances have specific tag.
the reason request amazon s3 comes user or role identified access key. amazon s3 check permissions against user or role. cannot check details of amazon ec2 instance 'sent'.
one option assign amazon ec2 instances specific role includes permissions amazon s3, while other instances have different role.
Comments
Post a Comment