Managing Access at Scale with Amazon S3 Access Points

In this lab, you will learn how to use Amazon S3 access points to simplify managing access to objects from resources with different access requirements. After taking this lab, you will be able to implement access points to control access to Amazon S3 resources based on specific tag values, and make those resources accessible via a specific VPC. You will also learn how to configure bucket policies that delegate access control for a bucket to the bucket’s access point.

Level

Intermediate

Duration

1 Hours 0 Minutes

Course Objectives

In this course, you will learn how to:

•  Explain the function of using access points as an access control mechanism
•  Implement access points to facilitate access control to data residing in an S3 bucket from users with different
  access requirements
• Create a bucket policy to delegate access control to an access point
  
  

Intended Audience

This course is intended for:

• Developers
• Architects

Prerequisites

We recommend that attendees of this course have the following prerequisites:

• Basic navigation of the AWS Management Console
• Editing scripts using a text editor
  
  

Course Outline

• Task 1: Environment overview
• Task 2: Create the S3 access points
• Task 3: Create a VPC endpoint
• Task 4: Create a bucket policy to delegate access control to the access points
• Task 5: Access the S3 objects as each user