Configure a credential based IAM user for AWS

The following steps have been provided as an example to help you create a credential based cloud account:

About this task

To copy AWS snapshots to PowerProtect DD Virtual Edition, you require a role based cloud account. For more information, see Configure a role-based IAM user for AWS.

Steps

  1. Log in to the AWS Management Console.
  2. Open the IAM console and create a user using the following steps:
    1. In the navigation pane of the IAM console, select Users, and then click Add user.
    2. Enter the username and select Programmatic access as the access type.
    3. Click Next: Permissions.
    4. Click Next: Tags.
    5. Click Next: Review.
    6. Ignore the warning, 'This user has no permissions' and click Create user.
    7. Copy the access key ID and secret access key for later use.
    8. Click the newly created username link and copy the user ARN.
  3. Complete the following to create a policy:
    1. Copy content from AWS minimum permission policy.
      For details about each AWS permission and how it is used by Cloud Snapshot Manager, see AWS permission usage.
    2. In the navigation pane of the IAM console, select Policies, and then click Create policy.
    3. Select the JSON tab, and paste the copied content from the portal.
    4. Click Review policy.
    5. Enter a policy name and click Create policy.
  4. Associate the policy with the user using the following steps:
    1. Search for the user in the Users page and click on it.
    2. Under the Permissions tab, click Add permissions.
    3. Select Attach existing policies directly and search for the policy that was created.
    4. Select the policy and click Next: Review.
    5. Click Add permissions.
  5. Paste the access key ID and secret access key in the corresponding fields in Cloud Snapshot Manager.
  6. Click Save.