Configuring Immutable Storage with Object Storage Repository
KB ID: 190027
Objective:
This KB article provides step-by-step guidance on configuring an Object Storage Repository as Immutable Storage in Amazon S3 and S3-compatible clouds. This involves enabling Object Locking and implementing the required IAM User Policy.
Amazon S3:
1. Enable Object Locking in the Bucket:
Access the AWS Management Console and navigate to the S3 service.
- Choose the desired bucket for Immutable Storage configuration.
- Navigate to the "Management" tab.
- Under "Object lock," click "Edit."
- Enable "Object Lock" and save the changes.
2. Remove Default Retention Settings (if any):
While configuring Object Locking, ensure no default retention settings are applied to the bucket, allowing objects to be classified as immutable without predefined retention periods.
3. Implement IAM User Policy:
- Create an IAM User Policy with necessary permissions to designate the bucket as Immutable Storage.
- Access the IAM console in the AWS Management Console.
- Navigate to "Policies" and click "Create Policy."
- Select the "JSON" tab and utilize the provided template
- JSON policy Template
- Review and save the policy.
4. Attach the Policy to IAM User:
In the IAM console, navigate to the "Users" section.
- Select the IAM user responsible for configuring Immutable Storage.
- Access the "Permissions" tab and click "Attach Policies."
- Search and attach the previously created IAM User Policy.
S3 Compatible Clouds:
Immutable cloud storage solutions such as Wasabi and MinIO are supported in BDRSuite. For other S3-compatible clouds, follow similar steps.
1. Enable Object Locking in the Bucket.
2. Remove Default Retention Settings (if any).
3. Implement IAM User Policy.
4. Attach the Policy to IAM User.
Conclusion:
Following these outlined steps facilitates the configuration of an Object Storage Repository as Immutable Storage in Amazon S3 and S3-compatible clouds. Enabling Object Locking and enforcing the necessary IAM User Policy enhances the security and compliance of your S3 bucket, ensuring immutability for specified objects.
Related Articles
Configuring Object Storage Repository as Immutable Storage
KB ID: 190026 Overview: Configuring an Object Storage Repository as Immutable Storage requires specific permissions to be granted. This article delineates the essential permissions and presents the JSON format of an IAM user policy necessary for ...
Object Storage Repository - Introduction
In this section, you will find information about object storage, its limitations if any and the process of configuring it as your backup storage using the BDRSuite Backup Server. What is object storage? Object storage is a data storage architecture ...
Object Storage Repository - Introduction
In this section, you will find information about object storage, its limitations if any and the process of configuring it as your backup storage using the BDRSuite Backup Server. What is object storage? Object storage is a data storage architecture ...
Object Storage Repository - Introduction
In this section, you will find information about object storage, its limitations if any and the process of configuring it as your backup storage using the BDRSuite Backup Server. What is object storage? Object storage is a data storage architecture ...
Object Storage Repository - Introduction
In this section, you will find information about object storage, its limitations if any and the process of configuring it as your backup storage using the BDRSuite Backup Server. What is object storage? Object storage is a data storage architecture ...