Creating access points with tags
You can tag access points when you create them. There is no additional charge for using tags on access points beyond the standard S3 API request rates. For more information, see Amazon S3 pricing. For more information about tagging access points, see Using tags with S3 Access Points for general purpose buckets.
Permissions
To create an access point with tags, you must have the following permissions:
-
s3:CreateBucket
-
s3:TagResource
Troubleshooting errors
If you encounter an error when attempting to create an access point with tags, you can do the following:
Verify that you have the required Permissions to create the access point and add a tag to it.
Check your IAM user policy for any attribute-based access control (ABAC) conditions. You may be required to label your access points only with specific tag keys and values. For more information, see Using tags for attribute-based access control (ABAC).
Steps
You can create an access point with tags applied by using the Amazon S3 console, the Amazon Command Line Interface (Amazon CLI), the Amazon S3 REST API, and Amazon SDKs.
To create an access point with tags using the Amazon S3 console:
Sign in to Amazon S3 console at https://console.amazonaws.cn/s3/
. In the left navigation pane, choose Access Points (General Purpose Buckets).
Choose create access point to create a new access point.
On the Create access point page, Tags is an option when creating a new access point.
Enter a name for the access point. For more information, see Access points naming rules, restrictions, and limitations.
Choose Add new Tag to open the Tags editor and enter a tag key-value pair. The tag key is required, but the value is optional.
To add another tag, select Add new Tag again. You can enter up to 50 tag key-value pairs.
After you complete specifying the options for your new access point, choose Create access point.
For information about the Amazon S3 REST API support for creating an access point with tags, see the following section in the Amazon Simple Storage Service API Reference:
To install the Amazon CLI, see Installing the Amazon CLI in the Amazon Command Line Interface User Guide.
The following CLI example shows you how to create an access point with tags by using the Amazon CLI. To use the command replace the user input placeholders
with your own information.
Request:
aws s3control create-access-point --name
\ --bucket
my-access-point
\ --account-id
amzn-s3-demo-bucket
111122223333
\ --profile personal \ --tags [{Key=key1
,Value=value1
},{Key=key2
,Value=value2
}] \ --regionregion