How can I use an Amazon Simple Storage Service (Amazon S3) bucket as the target for AWS Database Migration Service (AWS DMS) for resources that are in the same account?

After you create a replication instance, you can use an S3 bucket as your target endpoint for DMS by following these steps:

  1. Create an S3 bucket
  2. Create an AWS Identity and Access Management (IAM) policy
  3. Create a role
  4. Create your target endpoint

For more information, see Using Amazon S3 as a Target for AWS Database Migration Service.

Create an S3 bucket

1.    Open the Amazon S3 console, and then create a bucket.

2.    Select the bucket that you created, and then choose Create folder.

3.    Enter a folder name, and then choose Save.

Create an IAM policy

1.    Open the IAM console, and then choose Policies from the navigation pane.

2.    Choose Create policy, choose JSON, and then add an IAM policy similar to the following:

    "Version": "2012-10-17",
    "Statement": [
            "Effect": "Allow",
            "Action": [
            "Resource": [
            "Effect": "Allow",
            "Action": [
            "Resource": [

Note: Update the policy to refer to your bucket name.

3.    Choose Review policy, enter a Name and Description, and then choose Create policy.

Create a role

1.    Open the IAM console, and then choose Roles from the navigation pane.

2.    Choose Create role, choose DMS, and then choose Next: Permissions.

3.    In the Create role pane, in the Search field, choose the policy that you created, and then choose Next: tags.

4.    Choose Next: Review.

5.    Enter a Role name and a Role description.

6.    Choose Create role.

Create your target endpoint

1.    Open the DMS console, and then choose Endpoints from the navigation pane.

2.    Choose Create endpoint, and then select Target.

3.    Enter the Endpoint identifier, and then choose S3 as the Target engine.

4.    Paste the Role ARN that you copied into the Service Access Role ARN field.

5.    Enter a Bucket name and a Bucket folder.

6.    Under Advanced, add your Extra connection attributes, if you have any.

7.    (Optional) Under Test endpoint connection, select your VPC and Replication instance, and then choose Run test.

8.    Choose Create endpoint.

Did this page help you? Yes | No

Back to the AWS Support Knowledge Center

Need help? Visit the AWS Support Center

Published: 2018-07-03

Updated: 2019-01-28