Amazon AWS SDK Manuel d'utilisateur télécharger pdf (Page 15)

We'll now examine each of these steps in detail.

Create an IAM role using the AWS Management Console

The first step is to create an IAM role that has the appropriate permissions.To create the IAM role, follow

the procedure Creating a IAM Role in Using IAM.

When creating the role, select Amazon EC2 as the role type, and then select AmazonS3ReadOnlyAccess

as the policy.

Policies can also be represented in JSON format. The following JSON block describes the policy for

Amazon S3 read-only access.

{

"Statement": [

{

"Effect": "Allow",

"Action": [

"s3:Get*",

"s3:List*"

"Resource": "*"

}

]

}

Note the name of the role that you create so that you can specify it when you create your EC2 instance

in the next step.

Launch an EC2 instance with the corresponding instance profile

To create an EC2 instance, follow the procedure Running an Instance in the Amazon EC2 User Guide

for Linux Instances.We recommend that you specify a recent Amazon Linux AMI for your EC2 instance.

When you create the EC2 instance, specify the IAM role that you created previously in the IAM console.

When you create your EC2 instance, you must specify a key pair and a security group for access.You

can create and configure these while setting up your EC2 instance.

When setting up your security group, make sure that it has SSH access enabled:

Version v1.0.0

AWS SDK for Ruby Developer Guide

Walkthrough: Using IAM Roles to Retrieve an Amazon

S3 Object from an EC2 Instance

1 2 ... 10 11 12 13 14 15 16 17 18 19 20 ... 28 29

Pas de commentaire

Amazon AWS SDK Manuel d'utilisateur Page 15