本文属于机器翻译版本。若本译文内容与英语原文存在差异，则一律以英文原文为准。

# 批量操作先决条件
<a name="bulk-operations-prereqs"></a>

本节介绍批量操作的先决条件，包括在 Amazon 服务和本地计算机之间交换资源的 Amazon Identity and Access Management (IAM) 权限。在开始批量操作之前，必须满足以下先决条件：
+ 创建 Amazon S3 存储桶以存储资源。有关使用 Amazon S3 的更多信息，请参阅[什么是 Amazon S3？](https://docs.amazonaws.cn//AmazonS3/latest/userguide/Welcome.html)

## IAM 权限
<a name="bulk-operations-prereqs-permissions"></a>

要执行批量操作，您必须创建一个 Amazon Identity and Access Management (IAM) 策略，该策略具有允许 Amazon S3 和您的本地计算机之间交换 Amazon 资源的权限。 Amazon IoT SiteWise有关创建 IAM 策略的更多信息，请参阅[创建 IAM 策略](https://docs.amazonaws.cn//IAM/latest/UserGuide/access_policies_create.html)。

要执行批量操作，您需要以下策略。

### Amazon IoT SiteWise 政策
<a name="bluk-operations-prereqs-policy"></a>

此策略允许访问批量操作所需 Amazon IoT SiteWise 的 API 操作：

```
{
    "Sid": "SiteWiseApiAccess",
    "Effect": "Allow",
    "Action": [
        "iotsitewise:CreateAsset",
        "iotsitewise:CreateAssetModel",
        "iotsitewise:UpdateAsset",
        "iotsitewise:UpdateAssetModel",
        "iotsitewise:UpdateAssetProperty",
        "iotsitewise:ListAssets",
        "iotsitewise:ListAssetModels",
        "iotsitewise:ListAssetProperties",
        "iotsitewise:ListAssetModelProperties",
        "iotsitewise:ListAssociatedAssets",
        "iotsitewise:DescribeAsset",
        "iotsitewise:DescribeAssetModel",
        "iotsitewise:DescribeAssetProperty",
        "iotsitewise:AssociateAssets",
        "iotsitewise:DisassociateAssets",
        "iotsitewise:AssociateTimeSeriesToAssetProperty",
        "iotsitewise:DisassociateTimeSeriesFromAssetProperty",
        "iotsitewise:BatchPutAssetPropertyValue",
        "iotsitewise:BatchGetAssetPropertyValue",
        "iotsitewise:TagResource",
        "iotsitewise:UntagResource",
        "iotsitewise:ListTagsForResource",
        "iotsitewise:CreateAssetModelCompositeModel",
        "iotsitewise:UpdateAssetModelCompositeModel",
        "iotsitewise:DescribeAssetModelCompositeModel",
        "iotsitewise:DeleteAssetModelCompositeModel",
        "iotsitewise:ListAssetModelCompositeModels",
        "iotsitewise:ListCompositionRelationships",
        "iotsitewise:DescribeAssetCompositeModel"
    ],
    "Resource": "*"
}
```

### Amazon IoT TwinMaker 政策
<a name="bulk-operations-TwinMaker-policy"></a>

此策略允许访问您用来处理批量操作的 Amazon IoT TwinMaker API 操作：

```
{
    "Sid": "MetadataTransferJobApiAccess",
    "Effect": "Allow",
    "Action": [
        "iottwinmaker:CreateMetadataTransferJob",
        "iottwinmaker:CancelMetadataTransferJob",
        "iottwinmaker:GetMetadataTransferJob",
        "iottwinmaker:ListMetadataTransferJobs"
    ],
    "Resource": "*"
}
```

### Amazon S3 策略
<a name="bulk-operations-S3-policy"></a>

此策略提供对 Amazon S3 存储桶的访问权限，以传输用于批量操作的元数据。

------
#### [ For a specific Amazon S3 bucket ]

如果您使用一个特定的存储桶来处理批量操作元数据，则此策略提供对该存储桶的访问权限：

```
{
    "Effect": "Allow",
    "Action": [
        "s3:PutObject",
        "s3:GetObject",
        "s3:GetBucketLocation",
        "s3:ListBucket",
        "s3:AbortMultipartUpload",
        "s3:ListBucketMultipartUploads",
        "s3:ListMultipartUploadParts"
    ],
    "Resource": [
        "arn:aws:s3:::{{bucket name}}",
        "arn:aws:s3:::{{bucket name}}/*"
    ]
}
```

------
#### [ To allow any Amazon S3 bucket ]

如果您要使用许多不同的存储桶来处理批量操作元数据，则此策略提供对任何存储桶的访问权限：

```
{
    "Effect": "Allow",
    "Action": [
        "s3:PutObject",
        "s3:GetObject",
        "s3:GetBucketLocation",
        "s3:ListBucket",
        "s3:AbortMultipartUpload",
        "s3:ListBucketMultipartUploads",
        "s3:ListMultipartUploadParts"
    ],
    "Resource": "*"
}
```

------<a name="bulk-operations-troubleshooting"></a>

有关对导入和导出操作进行故障排除的信息，请参阅[批量导入和导出故障排除](troubleshooting-bulk.md)。