# S3 Access

NannyML Cloud supports reading datasets directly from S3. To use this feature we recommend granting the IAM role associated with NannyML Cloud access to the S3 buckets containing your data. This will allow NannyML Cloud to access the S3 buckets you specify without having to provide access keys at runtime.

You can use the IAM policy below as a template for granting read access to specific S3 buckets. This example grants read-only access to the `datasets` bucket.

```json
{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": ["s3:ListBucket"],
      "Resource": ["arn:aws:s3:::datasets"]
    },
    {
      "Effect": "Allow",
      "Action": ["s3:GetObject"],
      "Resource": ["arn:aws:s3:::datasets/*"]
    }
  ]
}
```

You would add this permission to the IAM role associated with your NannyML Cloud instance, e.g. via the [IAM portal](https://us-east-1.console.aws.amazon.com/iamv2/home#/roles). Please refer to the AWS documentation about [creating IAM policies](https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_create.html) and [attaching IAM permissions](https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_manage-attach-detach.html) for more information.

{% hint style="info" %}
If you've deployed NannyML Cloud on EKS using [our instructions](/cloud/deployment/aws/eks.md#step-1-create-an-aws-iam-role-and-kubernetes-service-account), the role associated with your NannyML Cloud instance would be named `eksctl-<cluster name>-addon-iamserviceacc-Role1-<random suffix>`.
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.nannyml.com/cloud/deployment/aws/s3-access.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.