Third Party Time-Based Access to an S3 Bucket

This guide covers creating an Access Flow for external support engineers who require internal access to specific S3 buckets for a limited amount of time.


In many cases you might need to grant an external employee, a customer or a vendor some access to a resource (i.e. an S3 bucket, a CloudSQL database, or a VM running in your Kubernetes).

Apono supports Access Flows that allow users who are not enlisted in your organizational Identity Provider by specific email and with MFA to receive access for a limited amount of time and for specific resource/s with full audit.

In this example we would like to create an Access Flow to allow a set of 2 external support engineers to access some of the S3 buckets only when necessary and with the approval of the internal cloud administrator.

You can see how here: