Impossible Cloud Storage Help
  • Company overview
    • What is Impossible Cloud
  • Getting Started
    • Getting Started with Impossible Cloud Storage
      • Setting up
      • Next steps
      • Getting support
  • Impossible cloud storage Guide
    • Storage Console URLs and API Endpoints
    • Storage Console
      • Accessing the console
        • Signing up for Impossible Cloud Storage
        • Signing in to Impossible Cloud Storage
        • Session lifetime limits
      • Interacting with the console
        • Navigating the menu
        • Using the panel
    • Buckets and Objects
      • Creating a bucket
      • Storing objects in a bucket
      • Interacting with objects
      • Creating folders in a bucket
      • Interacting with folders and buckets
      • Public File Sharing via URLs
      • Emptying a Bucket
      • Limitations
      • Versioning and object lock
        • Enabling versioning
        • Using versioning
        • Enabling object lock
        • Using object lock
    • Access keys
    • CLI User Guide
      • AWS CLI installation instructions
      • AWS CLI configuration
      • Using Impossible Cloud with AWS CLI
      • AWS CLI basic commands
      • AWS CLI advanced commands
        • Examples
      • AWS CLI for cloud-to-cloud migration scenarios
      • AWS CLI Credentials & Config chain
      • AWS CLI: IAM
        • Limitations
        • List of supported operations
        • Operations Descriptions and Examples
    • Billing
      • Storage Calculation
      • Minimum charge
      • Using the free trial
      • Upgrading your plan
      • Managing your subscription
      • Fair use policy
      • Exchange rate
    • Profile settings
      • Multi-Factor Authentication (MFA)
        • Enabling and Disabling MFA
        • MFA Reset
        • Organization-wide Policies
  • Security
    • Securing Your Data
    • Identity Access Management (IAM)
      • Managing users
      • Managing groups
      • Managing policies
    • CORS support
      • Limitations
      • CORS Configuration
  • Troubleshooting & Common Questions
    • Common errors
      • I can only see 'buckets' and 'keys' in the menu of the console
      • I can delete objects despite object lock & retention enabled
      • Cannot remove bucket [name]. The bucket you tried to delete is not empty. You must delete all ...
      • Errors while creating a bucket
    • FAQ
      • How to collect HAR log
      • How does pricing work?
      • What are the rules for setting a password?
      • What are the rules for naming buckets?
      • How to retrieve your CanonicalID
      • How to delete thousands of objects via aws cli
      • How does Impossible Cloud handle tax collection?
  • Integrations with other applications
    • Backup Software Integrations Guides
      • Acronis Cyber Infrastructure: creating a backup storage
      • Backup Exec: configuring Cloud Storage
      • Comet Backup: creating a storage vault using storage templates
      • Duplicati: adding a Backup Destination
      • HYCU: adding a Target
      • Impossible Surveillance Cloud
        • Step 1: Create a bucket in Impossible Cloud Console
        • Step 2: Create a subuser and assign policy
        • Step 3: Indentify VMS
          • XProtect
          • MOBOTIX
          • Siviellance
          • Velocity Vision
          • Other
      • MSP360: configuring a Storage Account in the management console
      • Nakivo: creating a Backup Repository
      • Tiger Bridge: configuring Tiger Bridge Target
      • Veeam: adding a Backup Repository
      • Storware: Adding a Backup Destination
    • Cloud Storage Browsers Integrations Guides
      • Cyberduck
        • Using Cyberduck with Impossible Cloud Storage
      • S3 Browser
        • Configuring S3 Browser with Impossible Cloud Bucket
      • CloudBerry Explorer
        • Adding a new Storage Account
      • CloudBerry Drive
        • Add Storage Account in CloudBerry Drive
    • Media Management Software Integrations Guides
      • Iconik: Media Management & Collaboration tool
        • Iconik Integration: Configuring Cloud Storage
    • NAS Applications Integrations Guides
      • QNAP Hybrid Backup Sync
        • Creating a Backup Job to Impossible Cloud Storage
      • Synology Hyper Backup
        • Creating a Backup Task to Impossible Cloud Storage
  • Other support resources
    • Other support resources
    • Impossible Cloud Management Console (ICMC)
Powered by GitBook
On this page

Was this helpful?

  1. Security
  2. Identity Access Management (IAM)

Managing policies

PreviousManaging groupsNextCORS support

Last updated 2 years ago

Was this helpful?

The 'policies' tab serves as the single source of truth for all policy management. You can add, filter and delete policies as well as edit a policy's permissions. Note that the 'policies' tab is only visible for root users - and accordingly, also conducting any of the above actions.

  • To add a policy, navigate to the 'policies' tab and select the respective button 'Add policy' on the top right of the console. You are then prompted to name the new policy, assign it to relevant buckets and decide which permissions you would like to assign to that policy. Note that you can assign different permission for different buckets simultaneously by clicking on 'Add Statement'. After creating a policy, you can filter policies with the search bar. You can also look at the commands when opening the 'JSON' tab for reference purposes. Note that when a policy is created, you have to assign that policy in the 'groups' tab - see the documentation for managing groups.

  • To delete policies, navigate to the 'policies' tab and click on the respective button next to the policy.

  • To edit a policy's permissions, navigate to the 'policies' tab and click the respective button next to the policy. You can edit the assigned buckets, the bucket's respective policies and add bucket-permission statements. Similar to when creating a policy, you may also refer to the JSON tab for the commands.

Navigate to the 'policies' tab and click on 'Add policy'.
Name your policy, assign it to relevant buckets and allow relevant permissions.
Refer to the JSON tab for the commands.
Filter for the relevant policy with the search bar.
Navigate to the 'policies' tab and click on the delete button next to the respective policy.
Navigate to the 'policies' tab and click on the edit button next to the respective policy.
Edit permissions, assigned buckets or add a statement.
You may refer to the JSON tab for the commands.