The following policy can be attached to an IAM group. It lets an IAM user in that group access a "home directory" in AWS S3 that matches their user name using the console. { "Version": "2012-10-17", "Statement": [ "Action": ["s3:*"], "Effect": "Allow", "Resource": ["arn:aws:s3:::bucket-name"], "Condition":{"StringLike":{"s3:prefix":["home/${aws:username}/*"]}} }, "Action":["s3:*"], "Effect":"Allow", "Resource": ["arn:aws:s3:::bucket-name/home/${aws:username}/*"] } ]

Question

Quizplus · Accepted Answer

The policy is incorrectly formatted and has syntax errors. The "Statement" should be an array of objects, not a single string. Additionally, the "Action", "Effect", and "Resource" should be within each statement object.

The Following Policy Can Be Attached to an IAM Group