AWS Transfer Family (IAM)

aws networking

AWS Transfer Family is a secure transfer service that enables you to transfer files into and out of AWS storage services.

Common permissions

transfer:ListServerstransfer:DescribeServertransfer:ListUserstransfer:DescribeUsertransfer:CreateUsertransfer:UpdateUsertransfer:StartServertransfer:StopServer

Least-privilege example

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "transfer:ListServers",
        "transfer:DescribeServer",
        "transfer:ListUsers",
        "transfer:DescribeUser",
        "transfer:CreateUser",
        "transfer:UpdateUser",
        "transfer:StartServer",
        "transfer:StopServer"
      ],
      "Resource": "*"
    }
  ]
}

Warnings

Avoid transfer:* — grants full control including delete and modify operations.
Avoid transfer:DeleteServer — can permanently delete transfer servers.

Resources

AWS referenceservicereference.us-east-1.amazonaws.com/v1/transfer/transfer.json ↗

API

full doc /v1/iam/transfer