EL storage: Defining user and group policies in the Wasabi Console

EL cloud services > EL storage > #2 Konfiguration
With EL storage, we offer you a scalable and cost effective S3-compatible cloud storage, based on Wasabi Hot Cloud Storage technology. In our helpdesk articles, we show you how to administer EL storage via the Wasabi console.

To restrict access for individual users or groups, there are policies in the Wasabi Hot Cloud Storage web portal. You can find these policies in the web portal in the "Policies" menu.


A policy consists of the following components:
  1. Name - defines the name of the policy
  2. Number Attached - The number of users or groups that have been assigned this policy
  3. ARN - Amazon Resource Name is the unique identifier used by Amazon Web Services for this policy
  4. Created On - Indicates the creation date of the policy

The function of each policy is explained as follows:

  1. AmazonS3Full Access - Grants a user or group full access to all S3 resources (buckets), but not to identity and access settings.
  2. AmazonS3ReadOnlyAccess - Grants a user or group the right to query information from S3 resources using Get and List commands, but no access to identity and access settings.
  3. AdministratorAccess - Grants a user or group unlimited access to all resources (S3 and IAM*).
  4. WasabiReadOnlyAccess - Grants a user or group the right to query information from S3 resources using Get and List commands, as well as the ability to sign in to the web portal. No access to identity and access settings.
  5. WasabiWriteOnlyAccess - Grants a user or group the right to write and abort all S3 resources, but no access to identity and access settings or web portal login.
  6. WasabiFullAccess - Grants a user or group unrestricted access to all S3 resources, as well as the ability to sign in to the web portal.
  7. WasabiAdministratorAccess - Grants a user or group unlimited access to all resources (S3 and IAM*), identical to AdministratorAccess.
  8. IAMUserChangePassword - Grants a user or group the right to change their own password after initial login to the web portal.
  9. WasabiViewBillingAccess - Grants a user or group the right to access and read bills.
  10. WasabiModifyBillingAccess - Grants a user or group the right to update or modify billing options.

For further information, please visit the manufacturer's documentation and extensive knowledge base.

* IAM stands for Identity and Access Management.
Article ID: 1434, , Modified: 5/5/2023 at 2:50 PM

Was this article helpful?

Share this article