Manage S3 service accounts using the CLI
This page describes how to add and control S3 service accounts using the CLI.
With the CLI, as an S3 user, you can:
Related topics
S3 users and authentication #S3 service accounts
View existing S3 service accounts
Command: weka s3 service-account list
Use this command to list the existing S3 service accounts.
The command lists only the access keys of the S3 service accounts added by the S3 user.
Add an S3 service account
Command: weka s3 service-account add
Use the following command line to add an S3 user account:
weka s3 service-account add <policy-file>
The system returns an access key and a secret key. If you do not specify a policy-file, the S3 service account inherits the IAM policy from the parent S3 user.
The secret key is visible only once when adding the S3 service account. You must save the secret key in a safe place for later use.
Parameters
Name
Type
Value
Limitations
Mandatory
Default
policy-file
String
The IAM policy file to attach to the S3 service account
Inherits the IAM policy from the parent S3 user
Show an S3 service account details
Command: weka s3 service-account show
Use the following command line to display the policy details attached to the specified S3 service account:
weka s3 service-account show <access-key>
Parameters
access-key*
The access key of the S3 service account.
Remove S3 service account
Command: weka s3 service-account remove
Use the following command line to remove an S3 service account:
weka s3 service-account remove <access-key>
Parameters
access-key*
The access key of the S3 service account to remove.
