AWS Setup Guide

In this guide we’ll show you how to:

• Create an S3 bucket on AWS
• Set up the correct IAM policy (permissions) for the bucket
• Create a user and some access credentials to connect to your website

Create an S3 bucket on AWS

1. Go to AWS Console then sign in or create a new account.
2. Go to the S3 service page. Click on the Services menu on the top left, select All Services and then S3.
   
3. Click Create bucket button
4. Fill in the bucket name and select a bucket region, and make a note of those – you can leave the other default settings unless you have a specific reason to change them. Click Create Bucket.
   
5. Go to the Transmit for S3 plugin on your WordPress site. You can now fill in the ‘bucket’ and ‘region’ fields with the name and region selected in the previous step. E.g.,  You would fill ineu-west-2 for Europe (London) eu-west-2.
   

Create an IAM policy

1. First we need to create a policy for your S3 user. Visit the AWS console again.
2. Go to the Services menu on the top left, click on All Services and then IAM.
   
3. Click on the Policies menu item on the left hand panel.
   
4. Click on the Create policy button.
5. Click on JSON.
   
6. Replace everything in the field the field with the following:

   {
   "Version": "2012-10-17",
       "Statement": [
           {
               "Sid": "Stmt1420044805001",
               "Effect": "Allow",
               "Action": [
                   "s3:ListBucket",
                   "s3:GetObject",
                   "s3:GetObjectAcl",
                   "s3:PutObject",
                   "s3:PutObjectAcl",
                   "s3:ReplicateObject",
                   "s3:DeleteObject"
               ],
               "Resource": [
                   "arn:aws:s3:::your-bucket-name",
                   "arn:aws:s3:::your-bucket-name/*"
               ]
           }
       ]
   }
   

7. Replace your-bucket-name with your own bucket name from the previous steps. Note: leave the /* at the end of the second line.
8. Click Next.
9. Give your policy a Policy name.
   
   This can be anything you liek, but you’ll need to use it later on.
10. Click the Create policy button.

Create a User and Access Credentials

1. We now need to create a new user.  Still in the IAM service, click on the Users menu item on the left hand panel.
   
2. Click on Create user button
3. Fill in a user name. This can be anything you like.
   
4. Click Next
5. Select Attach policies directly, then click the refresh button
   
6. In the search field, type in your newly created policy name and tick the checkbox to select the policy
   
   
7. Click Next.
8. Click Create user button.
9. You’ll be brought back to the Users page. Search for your newly created user name.
   
10. Click on the user name to edit.
11. Click on Security credentials.
    
    
12. Click on Create access key button.
    
13. Select Application running outside AWS.
    
    
14. Click Next.
15. Click Create access key button.
16. On the Retrieve access keys page, you will be able to copy the ‘key’ and ‘secret’. Do not save yet as this will take you away from this page.
    
17. Back to the Transmit for S3 plugin settings page on your WordPress site, paste the ‘key’ and ‘secret’ into the relevant plugin settings fields. You can leave the ‘endpoint’ field empty.
    
18. Click the Save credentials button. The connection status should turn green if all is ok.
19. Back to the AWS console, click the Done button.
20. Click Continue if you see the Continue without viewing or downloading? popup and you’ve already filled in or downloaded the credentials.
21. You’re all done!