The S3 menu allows tenant users to manage access keys, create S3 buckets, and manage platform service endpoints.
My Credentials
S3 access keys can be managed as follows:
- Users who have the Manage Your Own S3 Credentials permission can create or remove their own S3 access keys.
- Users who have the Root Access permission can manage the access keys for the S3 root account, and all other users. Root access keys also provide full access to the tenant’s buckets and objects unless explicitly disabled by a bucket policy.
Buckets
S3 tenant users with the appropriate permissions can perform the following tasks related to buckets:
- Create buckets
- Specify compliance settings
- Update consistency level settings
- Configure cross-origin resource sharing (CORS)
- Enable and disable last access time update settings for the buckets belonging to the tenant
If a grid administrator has enabled the use of platform services for the tenant account, an S3 tenant user with the appropriate permissions can also perform these tasks:
- Configure S3 event notifications, which can be sent to a destination service that supports the AWS Simple Notification Service™ (SNS).
- Configure CloudMirror replication, which enables the tenant to automatically replicate objects to an external S3 bucket.
- Configure search integration, which sends object metadata to a destination search index whenever an object is created, deleted, or its metadata or tags are updated.
Endpoints
If a grid administrator has enabled the use of platform services for the tenant account, an S3 tenant user with the appropriate permissions can configure a destination endpoint for each platform service.