Reputation: 1516
Sharing S3 Bucket between Accounts for CloudFront
I have two AWS accounts. Each account has an S3 bucket and CloudFront which exposes the contents of the S3 bucket.
I would like to get rid of a CORS issue. For that I I need to serve all content using one CloudFront.
How I can grant permissions to the S3 bucket from account2 to CloudFront in account1?
Upvotes: 2
Views: 2857
Answers (1)
Reputation: 4451
This is possible if the bucket is publicly accessible , the bucket won't come in the drop down when you're creating origin but you can use the name as bucket.s3.region.amazonaws.com.
It is also possible using origin access identity. Use first your own bucket to create the bucket policy automatically by CloudFront, you should be able to see IAM identity in CloudTrail, you can copy the same policy on the other account S3 bucket and OAI should work.
Upvotes: 1
Related Questions
- AWS CloudFront access denied to S3 bucket
- Not able to server multiple S3 buckets on a single Cloudfront Distribution
- Multiple S3 buckets in the same CloudFront distribution
- AWS Cloudfront distribution based on S3 bucket with cross-account objects getting Access denied
- Access an S3 bucket created by another user
- Cloudfront 403 error while accessing files uploaded by another account
- Access Folders in AWS S3 buckets from CloudFront
- Amazon S3 bucket objects access
- Access protected S3 bucket using CloudFront
- How to allow CloudFront to access certain S3?