Permissions Troubleshooting errors Steps

Creating general purpose buckets with tags

You can tag Amazon S3 general purpose buckets when you create them. There is no additional charge for using tags on buckets beyond the standard S3 API request rates. For more information, see Amazon S3 pricing. For more information about tagging buckets, see Using tags with S3 general purpose buckets.

Permissions

To create a bucket with tags, you must have the following permissions:

s3:CreateBucket
s3:TagResource

Amazon S3 Console and CloudFormation now use this capability to create buckets with tags.

Troubleshooting errors

If you encounter an error when attempting to create a bucket with tags, you can do the following:

Verify that you have the required Permissions to create the bucket and add a tag to it.
Check your IAM policy for aws:TagKeys or aws:RequestTag/key-name condition keys. You might be required to label your buckets only with specific tag keys and values. For more information, see Using tags for attribute-based access control (ABAC).

Note

Amazon S3 and CloudFormation now use this capability to create buckets with tags. When creating buckets with tags, note that tag-based conditions to access your bucket using aws:ResourceTag and s3:BucketTag condition keys are applicable only after you enable ABAC on the bucket. To learn more, see Enabling ABAC in general purpose buckets.

Steps

You can create a bucket with tags applied by using the Amazon S3 console, the AWS Command Line Interface (AWS CLI), the Amazon S3 REST API, and AWS SDKs.

To create a bucket with tags using the Amazon S3 console:

Sign in to Amazon S3 console at https://console.aws.amazon.com/s3/.
In the left navigation pane, choose buckets.
Choose create bucket to create a new bucket.
Create a bucket a general purpose bucket as you normally would; see Creating a general purpose bucket.
On the Create bucket page, Tags is an option when creating a new bucket.
Enter a name for the bucket. For more information, see General purpose bucket naming rules.
Choose Add new Tag to open the Tags editor and enter a tag key-value pair. The tag key is required, but the value is optional.
To add another tag, select Add new Tag again. You can enter up to 50 tag key-value pairs.
After you complete specifying the options for your new bucket, choose Create bucket.

For information about the Amazon S3 REST API support for creating a general purpose bucket with tags, see the following section in the Amazon Simple Storage Service API Reference:

CreateBucket

To install the AWS CLI, see Installing the AWS CLI in the AWS Command Line Interface User Guide.

The following CLI example shows you how to create a bucket with tags by using the AWS CLI. To use the command replace the user input placeholders with your own information.

When you create a bucket, you must provide configuration details and use the following naming convention: amzn-s3-demo-bucket

Request:


aws s3api create-bucket \
--bucket mybucket \
--create-bucket-configuration 'LocationConstraint=us-west-2,Tags=[{Key=MyTagKey,Value=MyTagValue}]' --region us-west-2"

Response:


{
  "Location": "http://mybuckets3.amazonaws.com/"
}

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions