Unify and manage your data

Create a Snowflake IAM policy in AWS

Learn how to create an IAM policy to grant permissions to your Snowflake environment from your S3 bucket.

Create an IAM policy to provide Snowflake certain AWS permissions to read events from Snowflake. For more information, see topic Policies and permissions in IAM.
To create a policy:
  1. Log in to the AWS Management Console.
  2. In the search field, search for iam.
  3. In the drop-down list of items, hover over IAM and select Policies.
  4. In the Policies page, select Create Policy.
  5. In the Create policy page, provide the permissions for the policy.
    1. Service: Select the S3 service.
    2. Actions: In the List access level, select ListBucket. In the Read access level, select GetObject, GetBucketLocation , and GetObjectVersion.
    3. Resources: Select Add ARN and add the bucket name from Create an AWS S3 storage bucket. The object name can be any.
    4. Select Add.
  6. Select Next:Tags.
  7. Select Next:Review.
  8. In the Review Policy page, provide the policy details.
    1. Name: Enter a policy name. For example: PM-Read-DPH.
    2. Description: Enter a description for the policy.
  9. Select Create Policy. For more information, see topic Creating IAM policies.