AWS Cross Account Bucket Access

On occasion is may be required to enable cross account bucket access in order to be able to import data into the Hydrolix platform.

To enable access two steps need to be completed:

👍

Update Source Bucket Permissions

Permissions on the source bucket need to be altered to allow the Hydrolix deployed account to access the bucket. This is completed by adding the following permission with the accounts ARN.

{
    "Version": "2012-10-17",
    "Id": "Download",
    "Statement": [
        {
            "Effect": "Allow",
            "Principal": {
                "AWS": "arn:aws:iam::123465789:root"
            },
            "Action": [
                "s3:GetObject",
                "s3:ListBucket"
            ],
            "Resource": [
                "arn:aws:s3:::mybucket",
                "arn:aws:s3:::mybucket/*"
            ]
        }
    ]

👍

Enable the Hydrolix Platform access

Update the bucket allow list on the platform to enable the bucket.

Cross Account S3 Buckets

AWS Cross Account Bucket Access

👍

Update Source Bucket Permissions

👍

Enable the Hydrolix Platform access

AWS Cross Account Bucket Access

👍 Update Source Bucket Permissions

👍 Enable the Hydrolix Platform access

👍

Update Source Bucket Permissions

👍

Enable the Hydrolix Platform access