You can use an Access Control List (ACL) to set permissions for other users to access and manage your bucket. For more information, see Access Control List (ACL) Reference.


  • To configure the ACL of a bucket, use the put-bucket-acl command following this syntax:

    $ aws s3api put-bucket-acl \
        --profile YOUR_PROFILE \
        --bucket BUCKET \
        --acl private \
        --grant-full-control "id=USER_ID, id=USER_ID" \
        --grant-read "id=USER_ID, id=USER_ID" \
        --grant-read-acp "id=USER_ID, id=USER_ID" \
        --grant-write "id=USER_ID, id=USER_ID" \
        --grant-write-acp "id=USER_ID, id=USER_ID" \
        --endpoint ENDPOINT

    • bucket: The name of the bucket for which you want to set the ACL.

    • (optional) acl: The permissions you grant for your bucket (private | public-read | public-read-write | authenticated-read).
    • (optional) grant-full-control:  One or more IDs of users to whom you grant the full-control permission.

    • (optional) grant-read:  One or more IDs of users to whom you grant theread permission.
    • (optional) grant-read-acp: One or more IDs of users to whom you grant the read-acp permission.
    • (optional) grant-write:  One or more IDs of users to whom you grant the write permission.
    • (optional) grant-write-acp: One or more IDs of users to whom you grant the write-acp permission.

   The ACL is configured for your bucket.



Previous Step:

(optional) Enabling or Disabling Bucket Versioning

Next Step: