Skip to content

AWS Create User and AK/SK Authorization

  1. Click to go to authorization, enter the console, and select IAM.

  2. Select Access Management > Users, and click Add User.

2.1 Go to Step 1 > Specify User Details, and start creating a user:

2.2 In the user details, enter the username:

2.3 Go to Step 2 > Set Permissions > Permission Options, select Attach Policies Directly, and click Create Policy:

2.3.1 In Edit Policy > Modify Permissions > Policy Editor, enter the following content:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "Statement1",
            "Effect": "Allow",
            "Action": [
                "s3:PutObject",
                "s3:GetObject",
                "s3:CreateBucket",
                "s3:ListAllMyBuckets",
                "s3:ListBucket"
            ],
            "Resource": "arn:aws-cn:s3:::*"
        }
    ]
}

Note: Only domestic sites support using aws-cn configuration, international site accounts need to use aws.

2.3.2 In Review and Create > Policy Details > Policy Name, enter a name to identify this policy, and save the permissions:

2.4 Return to the Create Role interface, click , and the previously created permission will appear. Select the permission:

2.5 Complete Create User:

  1. Create AK/SK, select Access Management > Users, and click Security Credentials. Scroll down the interface, and select Create Access Key.

3.1 Select local code

3.2 Then generate AK/SK

This is the only time you can view or download the secret access key. You will not be able to recover it later. However, you can create a new access key at any time.