---
title: Configuring the IAM user policy
description: To manage your deployment package store, configure a new identity and access management (IAM) policy in the IAM dashboard of AWS Management Console.
component: pingauthorize
version: 10.1
page_id: pingauthorize:pingauthorize_server_administration_guide:amazon_deployment_store_user_policy
canonical_url: https://docs.pingidentity.com/pingauthorize/10.1/pingauthorize_server_administration_guide/amazon_deployment_store_user_policy.html
revdate: April 30, 2024
section_ids:
  about-this-task: About this task
  steps: Steps
  example: Example:
---

# Configuring the IAM user policy

## About this task

To manage your deployment package store, configure a new identity and access management (IAM) policy in the IAM dashboard of AWS Management Console.

## Steps

1. In the AWS Management Console, on the [IAM dashboard](https://console.aws.amazon.com/iam/home), go to **Access Management → Policies** and click **Create policy**.

   ![Screen capture of the Policies page with the Create policy button in the IAM dashboard of AWS Management Console](_images/mya1666652757534.png)

2. In the **Policy editor** wizard, select the **JSON** tab and enter these permissions:

   ### Example:

   ```json
   {
       "Version": "<policy_creation_date>",
       "Statement": [
           {
               "Effect": "Allow",
               "Action": [
                   "s3:PutObject",
                   "s3:GetObject",
                   "s3:ListBucket"
               ],
               "Resource": "*"
           }
       ]
   }
   ```

   |   |                                                                                                                                                                                                                                                                                                                           |
   | - | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
   |   | You can manage S3 bucket access in multiple ways, including IAM policies, S3 policies, or S3 access control lists (ACLs). We provide a working IAM policy example, but you should be aware of current AWS best practices, industry best practices, and your organization's conventions when configuring S3 bucket access. |

   Replace the asterisk wildcard character to restrict the access scope of the previous policy.

3. Complete the Create policy wizard according to your organization's specifications.

4. On the Review and create confirmation page, review your configurations and click Create policy to create the IAM user policy.