Skip to main content

Hyperproof and Amazon S3

AWS LiveSyncs allow users to import files from S3 buckets into Hyperproof. It’s recommended that the policy created for LiveSyncs enumerates specific buckets in the Resource section of the policy for the GetObject permission. See the sample policy in the section below.

Use cases

Actions(s)

Notes

S3 LiveSyncs

  • S3:ListAllMyBuckets

  • S3:ListBucket

  • S3:GetObject

Used to create S3 LiveSyncs and collect proof from buckets. It's recommended that you only provide the s3:GetObject permissions for the specific buckets you want to pull files from using the Resource section of the policy.

Creating a policy

  1. In the AWS Management Console, expand All services.

  2. Below Security, Identity, & Compliance, click IAM.

  3. From the left navigation menu, expand Access management, and then click Policies.

  4. Click Create Policy.

  5. Select the JSON tab, and then paste the file below. Replace test-hyperproof with the S3 bucket that you want to give access to.

    {
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "VisualEditor0",
            "Effect": "Allow",
            "Action": [
                "s3:GetObject"
            ],
            "Resource": [
                "arn:aws:s3:::your-bucket-name/*",
                "arn:aws:s3:::your-bucket-name"
            ]
        },
        {
            "Sid": "VisualEditor1",
            "Effect": "Allow",
            "Action": [
                "s3:ListAllMyBuckets",
                "s3:ListBucket"
            ],
            "Resource": "*"
        }
    ]
}

    Note

    Optionally, you can add additional buckets in the first Resource section of the JSON file above if you want LiveSync to work with more buckets.

  6. Optionally, click Next: Tags to add tags for the policy.

  7. Click Next: Review.

  8. Enter a name for the policy, and then click Create Policy.

Creating a new user

  1. From the left navigation menu, expand Access management, and then click Users.

  2. Click Add users.

  3. In the User name field, enter a unique username.

  4. Below Select AWS access type, select the Access key - Programmatic access checkbox.

  5. Click Next: Permissions.

  6. Click Attach existing policies directly.

  7. In the search bar, enter the name of the policy created in the previous section.

  8. Select the checkbox next to the policy name.

  9. Optionally, click Next: Tags to add tags for the user.

  10. Click Next: Review.

  11. Review your choices, and then click Create user.

In this section: