# Appendix A - AWS Authentication with N2W

For N2W to perform its backup and restore management functions, it needs to have the correct permissions assigned.

N2W supports two different types of AWS authentication during setup:

* AccessKey / SecretKey &#x20;
* Role-based authentication (recommended)

The permissions necessary have been combined into a JSON file for convenience and can be downloaded from the N2W Knowledge Base:

<https://n2ws.zendesk.com/hc/en-us/articles/28832964188573-Required-Minimum-AWS-IAM-permissions-for-N2W-operations>

1. At the top of your AWS console, select the **Services** tab. In the **Security Identity & Compliance** section, select **IAM**.
2. In the left menu, select **Policies**.

![](/files/ulvyg2c5lpwkS7cjhLG8)

&#x20;   3\. Select the **Create policy** button.

![](/files/FkRz1PCZnwCKEfSfTkxl)

&#x20;   4\. Select the **JSON** tab.

&#x20;   5\. Delete the default contents and copy and paste the contents of the JSON file downloaded from our Knowledge Base (see above).

![](/files/c2vIYn69DEc25uaohhhg)

&#x20;   6\. At the bottom of the screen, select **Next.**

&#x20;   7\. Type a **Name** for the policy, and select **Create policy**.

![](/files/2eRP3w3jl9NOzLhBIeU8)

&#x20;   8\. Create a role, and then assign the policy you just created to that role. In the left menu, select **Roles** and then select **Create role**.

![](/files/NZ1LSb3BMTrtsoq4HicS)

&#x20;   9\. In the list of **type of trusted entity**, select **AWS service** and then select **EC2**. \
&#x20;   10\. Select **Next: Permissions**.

![](/files/1L9xLcxsfXZIW9tJCo4v)

&#x20;   11\. On the **Add Permissions** page, search for the 3 previously created polices, and then select **Next.**

![](/files/UEAznYan5b5lyq900lGG)

&#x20;   12\. Name the **Role**, and select **Create Role**.

![](/files/qj1eo3IeAszPxeev2O7U)

&#x20;   13\.  Assign the resulting role to the N2W trial instance:

* Select the N2W instance name.
* In the **Actions** menu, select **Instance Settings** and then **Attach/Replace IAM Role**.

![](/files/NNehAHpD7IoxnDVgAPjh)

&#x20;&#x20;


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.n2ws.com/quick-start/appendix-a-aws-authentication.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.