Amazon S3 configuration example - See an example of configuring an Amazon S3 cloud storage solution in order to retrieve information necessary for configuring backup or export of incidentsCortex XSOAR. - Administrator Guide - 8.13 - Cortex XSOAR - Cortex - Security Operations

Log into the AWS Management Console and navigate to the S3 service.

Using the S3 console, create or configure a general purpose bucket.

Record the bucket name and region for later.

Open the AWS Identity and Access Management (IAM) service. 

Create a user. XSOAR uses this user to connect with the bucket you just created.

In the Security credentials tab, create an access key using the Third-party service use case. The secret key is automatically generated.

Record both keys for later.

In AWS Identity and Access Management (IAM), create a role and follow the wizard. 

In Step 1, select AWS service as the trusted entity and S3 as the use case. Click Next.

In Step 2, select Permissions → Set permissions boundary - optional → Create role without a permissions boundaryto create a role. Click Next.

Enter a role name and description. Then define a custom policy with the following JSON:

{
   "Version": "2012-10-17",
   "Statement": 
   [ 
      { 
         "Effect": "Allow",         
         "Action": [
            "s3:PutObject",
            "s3:GetObject",
            "s3:DeleteObject"
         ],
         "Resource": "arn:aws:s3:::YourBucketName/*"
      },
      {
         "Effect": "Allow","Action": "s3:ListBucket",
         "Resource": "arn:aws:s3:::YourBucketName"
      }
   ]}

In the above JSON, replace YourBucketName with your actual bucket name in two places. This automatically associates the policy with the bucket via the Amazon Resource Name (ARN).

Save the role and policy.