From the course: AWS Certified Data Engineer Associate (DEA-C01) Cert Prep

Unlock this course with a free trial

Join today to access over 25,300 courses taught by industry experts.

Amazon S3 access points

Amazon S3 access points

From the course: AWS Certified Data Engineer Associate (DEA-C01) Cert Prep

Start my 1-month free trial Buy for my team

Amazon S3 access points

- [Narrator] Amazon S3 bucket policies can get quite complicated when data is shared across multiple applications or teams and each of them needs a different level of access. So in this video, we'll show you how to manage this with S3 access points. Data in a data lake is meant to be shared and used by multiple teams for a variety of purposes. To simplify managing the permissions, you can create an S3 access point for each application or group that needs access. Each access point can have its own access control policy. Every access point is associated with a single bucket, and you can restrict access to certain objects in your bucket using prefixes or object tags. Each access point includes a network control origin and a block public access control. So you can use it, for example, to only allow access from within your VPC. You can access S3 using an access point with its ARN from the management console, the CLI, SDKs, or S3 REST APIs.

Contents