Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup™ for Cloud Object Store Administrator's Guide
  3. Managing Cloud object store assets
  4. Permissions required for Amazon S3 cloud provider user
NetBackup™ for Cloud Object Store Administrator's Guide

Permissions required for Amazon S3 cloud provider user

The Amazon (S3) cloud provider, requires the following permissions to work with NetBackup:

  • s3:ListAllMyBuckets

  • s3:ListBucket

  • s3:GetBucketLocation

  • s3:GetObject

  • s3:PutObject

  • s3:GetObjectTagging

  • s3:GetObjectAcl

  • s3:PutObjectAcl

  • s3:PutObjectTagging

  • s3:RestoreObject

  • s3:PutObjectRetention

  • s3:BypassGovernanceRetention

  • s3:GetBucketObjectLockConfiguration

  • s3:Getobjectretention

To use the object change tracking feature, add the following additional permission for the source buckets:

  • s3:GetBucketLogging

  • s3:GetBucketAcl

To use the object change tracking feature, add only the following permissions in the log buckets:

  • s3:ListBucket

  • s3:GetObject

  • s3:GetBucketAcl

Feedback

Was this page helpful?
Previous

Configuring advanced dynamic multi-streaming parameters

Next

Permissions required for Azure blob storage

Feedback

Was this page helpful?