我有两个 AWS 账户,比如 A(用于 AWS 服务)和 B(用于 s3)。我想访问账户 A 的数据管道服务中 B 的 s3 存储桶,以管理账户 B 内的数据传输。我有账户 B 的访问密钥对。如何使用访问密钥对设置 S3 对数据管道服务的访问?
1 回答
1
I am not familiar with Data Pipeline, but I suspect you will need to:
- Add a Bucket Policy to the Amazon S3 bucket in Account-B that permits access from the IAM Role being used by Data Pipeline in Account-A
- Add permissions to the IAM Role being used in Data Pipeline in Account-A so that it is permitted to access the bucket in Account-B (or granting permission for all buckets will work too)
The permissions need to be granted in both directions.
I suspect that this is more likely to work than giving Data Pipeline a special set of credentials to use when accessing that particular bucket.
于 2020-09-25T06:30:11.307 回答