Tue Jun 16 2020
What are AWS S3 roled-based Outputs and how do I create them?
S3 role-based Outputs are an alternative way of service to access your AWS S3 bucket to be used as an Input (Encoding) and/or Output (Encoding/Analytics). Instead of providing an Access/Secret key pair, we provide you with an AWS IAM user name, which you can grant specific access rights in your account so it can access your desired S3 bucket.
To do that, you create an IAM role in your AWS account, and attach an IAM policy to it. This policy states which bucket can be accessed by our user, and which permissions are granted to it.
Before you start you need two to know two things:
- The name of your S3 bucket
- The ARN of the Bitmovin User:
1) Create a Role in IAM
Create a new Role in your AWS IAM Management Area (IAM - Identity and Access Management Role). You will be asked for two parameters:
2) Assign an IAM Policy to your new Role
|The pre-defined |
In order to create your own custom policy that only provides the minimum set of rights that are required, click the
Create Policy button. Have a look at our tutorials for
- creating S3 role-based outputs with the Bitmovin API or
- for our Analytics service and how to define them there as outputs for data exports
for specific IAM policy examples.