Posted On: Jul 26, 2021

Amazon S3 Access Points aliases allow any application that requires an S3 bucket name to easily use an access point. With S3 Access Points, you can create hundreds of unique policies to easily control access to shared datasets. Now, you can use S3 Access Point aliases anywhere you use S3 bucket names to access data in S3. With this update, you can use S3 Access Point aliases with AWS services, including Amazon EMR, Amazon Storage Gateway, and Amazon Athena, open-source packages, such as Apache Spark and Apache Hive, and Amazon Partner Network (APN) solutions without any code changes and at no additional cost.

S3 Access Points help you easily build the right access controls to shared datasets. Each access point has its own discrete policy that defines which requests and VPCs are allowed to use the access point. You can easily add hundreds of access points and you no longer have to worry about managing access through a single bucket policy that spans hundreds of use cases. For example, you can create access points with tailored read or write access for each team within the organization, or limit access to a bucket through access points that are restricted to a VPC.

Aliases for S3 Access Points are automatically generated and are interchangeable with S3 bucket names anywhere you use a bucket name for data access. You can use an Access Point alias anywhere a bucket name is used today to perform object-level operations such as PUT, GET, LIST, and more. Every time you create an access point for a bucket, S3 generates a new access point alias. For existing S3 Access Points, aliases have been automatically assigned and are ready for use, with no additional steps required.

You can create S3 Access Points, at no additional cost, on all S3 buckets through the S3 Management Console, AWS Command Line Interface (CLI), the Application Programming Interface (API), and the AWS Software Development Kit (SDK) client.

S3 Access Points are available in all AWS Regions, including the AWS GovCloud (US) Regions, the AWS China (Beijing) Region, operated by Sinnet, and the AWS China (Ningxia) Region, operated by NWCD. To learn more about S3 Access Points and Access Point aliases visit the feature page, read the documentation, and see our FAQs.