问题描述

我正在使用aws来备份我的数据。我想选择以下方法来备份我的数据。



1.假设我有n个组织，每个组织有n个部门，每个部门都有n个用户数量。

2.我想根据组织备份这些组织数据>部门>用户结构。

3.现在我在aws s3中有一个iam用户帐户和一个存储桶。

4.我根据组织结构创建一个文件夹结构



组织的第一个文件夹>部门的子文件夹>用户的子子文件夹





例如

组织名称：ABC



部门名称：开发人员



用户名：testUser



所以桶aws上的文件夹结构将为



ABC / Developer / testUser / ....



so在这里，我展示了我如何在aws s3上管理组织的数据。



但现在重点是我允许组织用户根据请求向/从s3输入/获取数据。



用户请求后我将生成该用户的联合用户凭据策略，允许用户只向用户文件夹发送/获取数据。



但我的问题是：



Q 1.我可以生成多少联合用户。它们是联邦用户的限制吗？



问2. IAM用户一次可以生成多少策略？



Q 3.正如我上面提到的那样，他们可以是n个联合用户，因此我可以生成n个策略并将其应用于联合用户。









谢谢和Regerds



Amit Manchanda

I am working on aws to back up my data. i want to choose following approach for backing up my data.

1. suppose i have n numbers of organizations and each organization has n number of departments and each department has n numbers of users.
2. i want to back up those organizations data based on organization > department >user structure.
3. now i have an iam user account and a bucket in aws s3.
4. i create a folder structure based on organization structure as

first folder for organization > subfolder for department > child sub folder for users


e.g
organization name :ABC

department name : Developer

user name: testUser

so bucket folder structure on aws will be as

ABC/Developer/testUser/....

so here i show how i am managing organization's data on aws s3.

but now the point is i am allowing organizations users to put/get data to/from s3 on request.

after user's request i will generate federated user credentials for that user will policy which will allow user to put/get data to/from only users folder.

But my questions are:

Q 1. How many federated users can i generate. Is their is any limit for federated users?

Q 2. how many policies an IAM user can generate at a time?

Q 3. As my approach mentioned above their can be n number of federated users so can i generate n number of policies and applies those to federated user.




Thanks & Regerds

Amit Manchanda

这篇关于对联盟用户和策略的限制的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持！