AWS Systems Manager
User Guide

AWS-Disables3BucketPublicReadWrite

Description

Use a private access control list to disable read and write access for a public Amazon Simple Storage Service (Amazon S3) bucket.

Document Type

Automation

Owner

Amazon

Platform(s)

Windows, Linux

Parameters

  • AutomationAssumeRole

    Type: String

    Description: (Optional) The ARN of the role that allows Automation to perform the actions on your behalf.

  • S3BucketName

    Type: String

    Description: (Required) Amazon S3 bucket on which you want to restrict access.

Examples

Start the automation

aws ssm start-automation-execution --document-name AWS-DisableS3BucketPublicReadWrite --parameters parameters

Retrieve the execution output

aws ssm get-automation-execution --automation-execution-id EXECUTIONID --output text --query 'AutomationExecution.Output'

Document Steps

aws:executeAwsApi

Outputs

None