StorageGRID 11.5 Docs
Release notes
Get started
Grid primer
About StorageGRID
Hybrid clouds with StorageGRID
StorageGRID architecture and network topology
How StorageGRID manages data
What an object is
How object data is protected
The life of an object
Ingest data flow
Copy management
Retrieve data flow
Delete data flow
Exploring the Grid Manager
Exploring the Tenant Manager
Using StorageGRID
Controlling StorageGRID access
Managing tenants and client connections
Configuring network settings
Configuring system settings
Using information lifecycle management
Monitoring StorageGRID operations
Viewing the Nodes page
Tabs for the Nodes page
Prometheus metrics
StorageGRID attributes
Monitoring and managing alerts
Using SNMP monitoring
Reviewing audit messages
Performing maintenance procedures
Downloading the Recovery Package
Using StorageGRID support options
Networking guidelines
StorageGRID networking overview
StorageGRID network types
Network topology examples
Grid Network topology
Admin Network topology
Client Network topology
Topology for all three networks
Networking requirements
Network-specific requirements
Deployment-specific networking considerations
Linux deployments
Host network configuration for Docker deployments
Networking and ports for platform services and Cloud Storage Pools
Appliance nodes
Network installation and provisioning
Post-installation guidelines
Network port reference
Internal grid node communications
External communications
Install and upgrade software
Install Red Hat Enterprise Linux or CentOS
Installation overview
Planning and preparation
Required materials
Downloading and extracting the StorageGRID installation files
CPU and RAM requirements
Storage and performance requirements
Node container migration requirements
Web browser requirements
Deployment tools
Preparing the hosts
Installing Linux
Configuring the host network
Considerations and recommendations for MAC address cloning
Example 1: 1-to-1 mapping to physical or virtual NICs
Example 2: LACP bond carrying VLANs
Configuring host storage
Configuring the Docker storage volume
Installing Docker
Installing StorageGRID host services
Deploying virtual grid nodes
Creating node configuration files
How grid nodes discover the primary Admin Node
Example node configuration files
Validating the StorageGRID configuration
Starting the StorageGRID host service
Configuring the grid and completing installation
Navigating to the Grid Manager
Specifying the StorageGRID license information
Adding sites
Specifying Grid Network subnets
Approving pending grid nodes
Specifying Network Time Protocol server information
Specifying Domain Name System server information
Specifying the StorageGRID system passwords
Reviewing your configuration and completing installation
Post-installation guidelines
Automating the installation
Automating the installation and configuration of the StorageGRID host service
Automating the configuration of StorageGRID
Overview of the installation REST API
Where to go next
Troubleshooting installation issues
Example /etc/sysconfig/network-scripts
Install Ubuntu or Debian
Installation overview
Planning and preparation
Required materials
Downloading and extracting the StorageGRID installation files
CPU and RAM requirements
Storage and performance requirements
Node container migration requirements
Web browser requirements
Deployment tools
Preparing the hosts
Installing Linux
Understanding AppArmor profile installation
Configuring the host network
Considerations and recommendations for MAC address cloning
Example 1: 1-to-1 mapping to physical or virtual NICs
Example 2: LACP bond carrying VLANs
Configuring host storage
Configuring the Docker storage volume
Installing Docker
Installing StorageGRID host services
Deploying virtual grid nodes
Creating node configuration files
How grid nodes discover the primary Admin Node
Example node configuration files
Validating the StorageGRID configuration
Starting the StorageGRID host service
Configuring the grid and completing installation
Navigating to the Grid Manager
Specifying the StorageGRID license information
Adding sites
Specifying Grid Network subnets
Approving pending grid nodes
Specifying Network Time Protocol server information
Specifying Domain Name System server information
Specifying the StorageGRID system passwords
Reviewing your configuration and completing installation
Post-installation guidelines
Automating the installation
Automating the installation and configuration of the StorageGRID host service
Automating the configuration of StorageGRID
Overview of the installation REST API
Where to go next
Troubleshooting installation issues
Example /etc/network/interfaces
Install VMware
Installation overview
Planning and preparation
Required materials
Downloading and extracting the StorageGRID installation files
Software requirements
CPU and RAM requirements
Storage and performance requirements
Web browser requirements
Deploying virtual machine grid nodes in VMware vSphere Web Client
Collecting information about your deployment environment
How grid nodes discover the primary Admin Node
Deploying a StorageGRID node as a virtual machine
Configuring the grid and completing installation
Navigating to the Grid Manager
Specifying the StorageGRID license information
Adding sites
Specifying Grid Network subnets
Approving pending grid nodes
Specifying Network Time Protocol server information
Specifying Domain Name System server information
Specifying the StorageGRID system passwords
Reviewing your configuration and completing installation
Post-installation guidelines
Automating the installation
Automating grid node deployment in VMware vSphere
Defining the configuration file for your deployment
Configuration file settings
Running the Bash script
Automating the configuration of StorageGRID
Overview of the installation REST API
Where to go next
Troubleshooting installation issues
Virtual machine resource reservation requires adjustment
Upgrade software
About StorageGRID 11.5
What's new in StorageGRID 11.5
Removed or deprecated features
Changes to the Grid Management API
Changes to the Tenant Management API
Upgrade planning and preparation
Estimating the time to complete an upgrade
How your system is affected during the upgrade
Impact of an upgrade on groups and user accounts
Verifying the installed version of StorageGRID
Obtaining the required materials for a software upgrade
Web browser requirements
Downloading the StorageGRID upgrade files
Downloading the Recovery Package
Checking the system’s condition before upgrading software
Performing the upgrade
Linux: Installing the RPM or DEB package on all hosts
Starting the upgrade
Upgrading grid nodes and completing the upgrade
Increasing the Metadata Reserved Space setting
Troubleshooting upgrade issues
Troubleshooting user interface issues
“Docker image availability check” error messages
Install and maintain hardware
SG6000 storage appliances
SG6000 appliances overview
SG6060 overview
SGF6024 overview
Controllers in the SG6000 appliances
Installation and deployment overview
Preparing for installation
Preparing the site (SG6000)
Unpacking the boxes (SG6000)
Obtaining additional equipment and tools (SG6000)
Web browser requirements
Reviewing appliance network connections
Port bond modes for the SG6000-CN controller
Network bond modes for the 10/25-GbE ports
Network bond modes for the 1-GbE management ports
Gathering installation information (SG6000)
Installing the hardware
Registering the hardware
SG6060: Installing 60-drive shelves into a cabinet or rack
SG6060: Installing the drives
SGF6024: Installing 24-drive shelves into a cabinet or rack
SG6000-CN: Installing into a cabinet or rack
Cabling the appliance (SG6000)
SG6060: Cabling the optional expansion shelves
Connecting power cords and applying power (SG6000)
Viewing status indicators and buttons on the SG6000-CN controller
Viewing boot-up status codes for the SG6000 storage controllers
Configuring the hardware
Configuring StorageGRID connections
Accessing the StorageGRID Appliance Installer
Verifying and upgrading the StorageGRID Appliance Installer version
Configuring network links (SG6000)
Configuring StorageGRID IP addresses
Verifying network connections
Verifying port-level network connections
Accessing and Configuring SANtricity System Manager
Setting up and Accessing SANtricity System Manager
Reviewing the hardware status in SANtricity System Manager
Setting the IP addresses for the storage controllers using the StorageGRID Appliance Installer
Configuring the BMC interface
Changing the root password for the BMC interface
Setting the IP address for the BMC management port
Accessing the BMC interface
Configuring SNMP settings for the SG6000-CN controller
Setting up email notifications for alerts
Optional: Enabling node encryption
Optional: Changing the RAID mode (SG6000 only)
Optional: Remapping network ports for the appliance
Deploying an appliance Storage Node
Monitoring the storage appliance installation
Automating appliance installation and configuration
Automating appliance configuration using the StorageGRID Appliance Installer
Automating installation and configuration of appliance nodes using the configure-sga.py script
Automating the configuration of StorageGRID
Overview of installation REST APIs
Troubleshooting the hardware installation
Viewing boot-up codes for the SG6000-CN controller
Viewing error codes for the SG6000-CN controller
Hardware setup appears to hang
Troubleshooting connection issues
Unable to connect to the appliance
Expansion shelves do not appear in Appliance Installer
Rebooting the SG6000-CN controller while the StorageGRID Appliance Installer is running
Maintaining the SG6000 appliance
Placing an appliance into maintenance mode
Upgrading SANtricity OS on the storage controllers
Upgrading SANtricity OS on the storage controllers using the Grid Manager
Upgrading SANtricity OS on the storage controllers using maintenance mode
Upgrading drive firmware using SANtricity System Manager
Adding an expansion shelf to a deployed SG6060
Turning the controller identify LED on and off
Locating the controller in a data center
Replacing a storage controller
Replacing hardware components in the storage controller shelf
Replacing hardware components in the optional 60-drive expansion shelf
Shutting down the SG6000-CN controller
Powering on the SG6000-CN controller and verifying operation
Replacing the SG6000-CN controller
Replacing a power supply in the SG6000-CN controller
Removing the SG6000-CN controller from a cabinet or rack
Reinstalling the SG6000-CN controller into a cabinet or rack
Removing the SG6000-CN controller cover
Reinstalling the SG6000-CN controller cover
Replacing the Fibre Channel HBA in the SG6000-CN controller
Verifying the Fibre Channel HBA to replace
Removing the Fibre Channel HBA
Reinstalling the Fibre Channel HBA
Changing the link configuration of the SG6000-CN controller
Changing the MTU setting
Checking the DNS server configuration
Monitoring node encryption in maintenance mode
Clearing the key management server configuration
SG5700 storage appliances
StorageGRID appliance overview
Controllers in the StorageGRID appliance
Installation and deployment overview
Preparing for installation
Preparing the site (SG5700)
Unpacking the boxes (SG5700)
Obtaining additional equipment and tools (SG5700)
Web browser requirements
Reviewing appliance network connections
Port bond modes for E5700SG controller ports
Network bond modes for the 10/25-GbE ports
Network bond modes for the 1-GbE management ports
Gathering installation information (SG5700)
Installing the hardware
Registering the hardware
Installing the appliance in a cabinet or rack (SG5700)
Cabling the appliance (SG5700)
Connecting power cords and applying power (SG5700)
Viewing SG5700 boot-up status codes
Status indicators on the E5700SG controller
Configuring the hardware
Configuring StorageGRID connections
Accessing the StorageGRID Appliance Installer
Verifying and upgrading the StorageGRID Appliance Installer version
Configuring network links (SG5700)
Setting the IP configuration
Verifying network connections
Verifying port-level network connections
Accessing and Configuring SANtricity System Manager
Setting up and Accessing SANtricity System Manager
Reviewing the hardware status in SANtricity System Manager
Setting the IP addresses for the storage controllers using the StorageGRID Appliance Installer
Optional: Enabling node encryption
Optional: Changing the RAID mode (SG5760 only)
Optional: Remapping network ports for the appliance
Deploying an appliance Storage Node
Monitoring the storage appliance installation
Automating appliance installation and configuration
Automating appliance configuration using the StorageGRID Appliance Installer
Automating installation and configuration of appliance nodes using the configure-sga.py script
Automating the configuration of StorageGRID
Overview of installation REST APIs
Troubleshooting the hardware installation
Hardware setup appears to hang
HE error: Error synchronizing with SANtricity OS Software
Troubleshooting connection issues
Unable to connect to the appliance
Rebooting the controller while the StorageGRID Appliance Installer is running
Maintaining the SG5700 appliance
Placing an appliance into maintenance mode
Upgrading SANtricity OS on the storage controller
Upgrading SANtricity OS on the storage controllers using the Grid Manager
Upgrading SANtricity OS on the E2800 controller using maintenance mode
Upgrading drive firmware using SANtricity System Manager
Replacing the E2800 controller
Replacing the E5700SG controller
Replacing other hardware components
Changing the link configuration of the E5700SG controller
Changing the MTU setting
Checking the DNS server configuration
Monitoring node encryption in maintenance mode
Clearing the key management server configuration
SG5600 storage appliances
StorageGRID appliance overview
StorageGRID appliance features
Hardware diagrams
Installation and deployment overview
Preparing for installation
Preparing the site (SG5600)
Unpacking the boxes (SG5600)
Obtaining additional equipment and tools (SG5600)
Service laptop requirements
Web browser requirements
Reviewing appliance network connections
Port bond modes for the E5600SG controller ports
Network bond modes for the 10-GbE ports
Network bond modes for the 1-GbE management ports
Gathering installation information (SG5600)
Installing the hardware
Registering the hardware
Installing the appliance in a cabinet or rack (SG5600)
Cabling the appliance (SG5600)
Connecting the AC power cords (SG5600)
Turning power on (SG5600)
Viewing boot-up status and reviewing error codes on the SG5600 controllers
E5600SG controller seven-segment display codes
Configuring the hardware
Configuring StorageGRID connections
Accessing the StorageGRID Appliance Installer
Verifying and upgrading the StorageGRID Appliance Installer version
Configuring network links (SG5600)
Setting the IP configuration
Verifying network connections
Verifying port-level network connections
Configuring SANtricity Storage Manager
Setting the IP address for the E2700 controller
Adding the appliance to SANtricity Storage Manager
Setting up SANtricity Storage Manager
Configuring AutoSupport
Verifying receipt of AutoSupport
Configuring email and SNMP trap alert notifications
Setting passwords for SANtricity Storage Manager
Optional: Enabling node encryption
Optional: Changing to RAID6 mode (SG5660 only)
Optional: Remapping network ports for the appliance
Deploying an appliance Storage Node
Monitoring the storage appliance installation
Automating appliance installation and configuration
Automating appliance configuration using the StorageGRID Appliance Installer
Automating installation and configuration of appliance nodes using the configure-sga.py script
Automating the configuration of StorageGRID
Overview of installation REST APIs
Troubleshooting the hardware installation
Hardware setup appears to hang
HE error: Error synchronizing with SANtricity OS Software
Troubleshooting connection issues
Unable to connect to StorageGRID appliance over the network
Rebooting the controller while the StorageGRID Appliance Installer is running
Maintaining the SG5600 appliance
Placing an appliance into maintenance mode
Upgrading SANtricity OS on the storage controllers using the Grid Manager
Upgrading SANtricity OS on the E2700 controller using maintenance mode
Upgrading drive firmware using SANtricity Storage Manager
Replacing the E2700 controller
Replacing the E5600SG controller
Replacing other hardware components
Changing the link configuration of the E5600SG controller
Changing the MTU setting
Checking the DNS server configuration
Monitoring node encryption in maintenance mode
Clearing the key management server configuration
SG100 & SG1000 services appliances
SG100 and SG1000 appliances overview
SG100 and SG1000 applications
Installation and deployment overview
Preparing for installation
Preparing the site (SG100 and SG1000)
Unpacking the boxes (SG100 and SG1000)
Obtaining additional equipment and tools (SG100 and SG1000)
Web browser requirements
Reviewing appliance network connections
Port bond modes for the SG100 and SG1000 appliances
Network bond modes
Network bond modes for the management ports
Gathering installation information (SG100 and SG1000)
Installing the hardware
Registering the hardware
Installing the appliance into a cabinet or rack (SG100 and SG1000)
Cabling the appliance SG100 and SG1000)
Connecting power cords and applying power (SG100 and SG1000)
Viewing status indicators on the SG100 and SG1000 appliances
Configuring StorageGRID connections
Accessing the StorageGRID Appliance Installer
Verifying and upgrading the StorageGRID Appliance Installer version
Configuring network links (SG100 and SG1000)
Configuring StorageGRID IP addresses
Verifying network connections
Verifying port-level network connections
Configuring the BMC interface
Changing the root password for the BMC interface
Setting the IP address for the BMC management port
Accessing the BMC interface
Configuring SNMP settings for the services appliance
Setting up email notifications for alerts
Optional: Enabling node encryption
Deploying a services appliance node
Deploying a services appliance as a primary Admin Node
Deploying a services appliance as a Gateway or non-primary Admin Node
Monitoring the services appliance installation
Automating appliance installation and configuration
Automating appliance configuration using the StorageGRID Appliance Installer
Automating installation and configuration of appliance nodes using the configure-sga.py script
Automating the configuration of StorageGRID
Overview of installation REST APIs
Troubleshooting the hardware installation
Viewing boot-up codes for the appliance
Viewing error codes for the appliance
Hardware setup appears to hang
Troubleshooting connection issues
Unable to connect to the appliance
Rebooting the services appliance while the StorageGRID Appliance Installer is running
Maintaining the appliance
Placing an appliance into maintenance mode
Turning the controller identify LED on and off
Locating the controller in a data center
Replacing the services appliance
Replacing a power supply in the services appliance
Replacing a fan in the services appliance
Replacing a drive in the services appliance
Changing the link configuration of the services appliance
Changing the MTU setting
Checking the DNS server configuration
Monitoring node encryption in maintenance mode
Clearing the key management server configuration
Configure and manage
Administer StorageGRID
Administering a StorageGRID system
Web browser requirements
Signing in to the Grid Manager
Signing out of the Grid Manager
Changing your password
Changing the provisioning passphrase
Changing the browser session timeout
Viewing StorageGRID license information
Updating StorageGRID license information
Using the Grid Management API
Grid Management API operations
Issuing API requests
Grid Management API versioning
Protecting against Cross-Site Request Forgery (CSRF)
Using the API if single sign-on is enabled
Using StorageGRID security certificates
Controlling administrator access to StorageGRID
Controlling access through firewalls
Using identity federation
Managing admin groups
Managing local users
Using single sign-on (SSO) for StorageGRID
How single sign-on works
Requirements for using single sign-on
Configuring single sign-on
Confirming federated users can sign in
Using sandbox mode
Creating relying party trusts in AD FS
Testing relying party trusts
Enabling single sign-on
Disabling single sign-on
Temporarily disabling and reenabling single sign-on for one Admin Node
Configuring administrator client certificates
Configuring key management servers
Reviewing StorageGRID encryption methods
Overview of KMS and appliance configuration
Considerations and requirements for using a key management server
Considerations for changing the KMS for a site
Configuring StorageGRID as a client in the KMS
Adding a key management server (KMS)
Step 1: Enter KMS Details
Step 2: Upload Server Certificate
Step 3: Upload Client Certificates
Viewing KMS details
Viewing encrypted nodes
Editing a key management server (KMS)
Removing a key management server (KMS)
Managing tenants
Creating a tenant account
Creating a tenant account if StorageGRID is not using SSO
Creating a tenant account if SSO is enabled
Changing the password for a tenant’s local root user
Editing a tenant account
Deleting a tenant account
Managing platform services for S3 tenant accounts
What platform services are
Networking and ports for platform services
Per-site delivery of platform services messages
Troubleshooting platform services
Configuring S3 and Swift client connections
Summary: IP addresses and ports for client connections
Managing load balancing
How load balancing works - Load Balancer service
Configuring load balancer endpoints
How load balancing works - CLB service
Managing untrusted Client Networks
Specifying a node’s Client Network is untrusted
Managing high availability groups
What an HA group is
How HA groups are used
Configuration options for HA groups
Creating a high availability group
Editing a high availability group
Removing a high availability group
Configuring S3 API endpoint domain names
Enabling HTTP for client communications
Controlling which client operations are permitted
Managing StorageGRID networks and connections
Guidelines for StorageGRID networks
Viewing IP addresses
Supported ciphers for outgoing TLS connections
Changing network transfer encryption
Configuring server certificates
Configuring a custom server certificate for the Grid Manager and the Tenant Manager
Restoring the default server certificates for the Grid Manager and the Tenant Manager
Configuring a custom server certificate for connections to the Storage Node or the CLB service
Restoring the default server certificates for the S3 and Swift REST API endpoints
Copying the StorageGRID system’s CA certificate
Configuring StorageGRID certificates for FabricPool
Generating a self-signed server certificate for the management interface
Configuring Storage proxy settings
Configuring Admin proxy settings
Managing traffic classification policies
Creating traffic classification policies
Editing a traffic classification policy
Deleting a traffic classification policy
Viewing network traffic metrics
What link costs are
Updating link costs
Configuring AutoSupport
Specifying the protocol for AutoSupport messages
Enabling AutoSupport on Demand
Disabling weekly AutoSupport messages
Disabling event-triggered AutoSupport messages
Manually triggering an AutoSupport message
Adding an additional AutoSupport destination
Sending E-Series AutoSupport messages through StorageGRID
Troubleshooting AutoSupport messages
Managing Storage Nodes
What a Storage Node is
Managing Storage Options
What object segmentation is
What Storage Volume watermarks are
Managing object metadata storage
Configuring global settings for stored objects
Configuring stored object compression
Configuring stored object encryption
Configuring stored object hashing
Storage Node configuration settings
Managing full Storage Nodes
Managing Admin Nodes
What an Admin Node is
Using multiple Admin Nodes
Identifying the primary Admin Node
Selecting a preferred sender
Viewing notification status and queues
How Admin Nodes show acknowledged alarms (legacy system)
Configuring audit client access
Configuring audit clients for CIFS
Configuring audit clients for Workgroup
Configuring audit clients for Active Directory
Adding a user or group to a CIFS audit share
Removing a user or group from a CIFS audit share
Changing a CIFS audit share user or group name
Verifying CIFS audit integration
Configuring the audit client for NFS
Adding an NFS audit client to an audit share
Verifying NFS audit integration
Removing an NFS audit client from the audit share
Changing the IP address of an NFS audit client
Managing Archive Nodes
What an Archive Node is
What the ARC service is
Configuring Archive Node connections to archival storage
Archiving to the cloud through the S3 API
Configuring connection settings for the S3 API
Modifying connection settings for S3 API
Modifying the Cloud Tiering Service state
Resetting the Store Failure Count for S3 API connection
Migrating objects from Cloud Tiering - S3 to a Cloud Storage Pool
Archiving to tape through TSM middleware
Configuring connections to TSM middleware
Optimizing an Archive Node for TSM middleware sessions
Configuring the archive state and counters for TSM
Managing an Archive Node when TSM server reaches capacity
Setting Archive Node to read-only if TSM middleware reaches capacity
Configuring Archive Node retrieve settings
Configuring Archive Node replication
Setting Custom alarms for the Archive Node
Integrating Tivoli Storage Manager
Archive Node configuration and operation
Configuration best practices
Completing the Archive Node setup
Installing a new TSM server
Configuring the TSM server
Defining TSM tape and disk storage pools
Defining a domain policy and registering a node
Creating and activating the domain policy
Migrating data into StorageGRID
Confirming capacity of the StorageGRID system
Determining the ILM policy for migrated data
Impact of migration on operations
Scheduling data migration
Monitoring data migration
Creating custom notifications for migration alarms
Manage objects with ILM
Managing objects with information lifecycle management
How ILM operates throughout an object's life
How objects are ingested
Data-protection options for ingest
Advantages, disadvantages, and limitations of the data-protection options
How objects are stored (replication or erasure coding)
What replication is
Why you should not use single-copy replication
What erasure coding is
What erasure-coding schemes are
Advantages, disadvantages, and requirements for erasure coding
How object retention is determined
How objects are deleted
How S3 versioned objects are deleted
What an ILM policy is
What an ILM rule is
What ILM rule filtering is
What ILM rule placement instructions are
Creating storage grades, storage pools, EC profiles, and regions
Creating and assigning storage grades
Configuring storage pools
What a storage pool is
Guidelines for creating storage pools
Using multiple storage pools for cross-site replication
Using a storage pool as a temporary location (deprecated)
Creating a storage pool
Viewing storage pool details
Editing a storage pool
Removing a storage pool
Using Cloud Storage Pools
What a Cloud Storage Pool is
Lifecycle of a Cloud Storage Pool object
When to use Cloud Storage Pools
Considerations for Cloud Storage Pools
Comparing Cloud Storage Pools and CloudMirror replication
Creating a Cloud Storage Pool
S3: Specifying authentication details for a Cloud Storage Pool
C2S S3: Specifying authentication details for a Cloud Storage Pool
Azure: Specifying authentication details for a Cloud Storage Pool
Editing a Cloud Storage Pool
Removing a Cloud Storage Pool
Troubleshooting Cloud Storage Pools
Configuring Erasure Coding profiles
Creating an Erasure Coding profile
Renaming an Erasure Coding profile
Deactivating an Erasure Coding profile
Configuring regions (optional and S3 only)
Creating an ILM rule
Step 1 of 3: Define basics
Using advanced filters in ILM rules
Step 2 of 3: Define placements
Using Last Access Time in ILM rules
Step 3 of 3: Define ingest behavior
Creating a default ILM rule
Creating an ILM policy
Creating a proposed ILM policy
Creating an ILM policy after S3 Object Lock is enabled
Simulating an ILM policy
Examples for simulating ILM policies
Activating the ILM policy
Verifying an ILM policy with object metadata lookup
Working with ILM rules and ILM policies
Managing objects with S3 Object Lock
Comparing S3 Object Lock to legacy Compliance
Workflow for S3 Object Lock
Requirements for S3 Object Lock
Enabling S3 Object Lock globally
Resolving consistency errors when updating the S3 Object Lock or legacy Compliance configuration
Example ILM rules and policies
Example 1: ILM rules and policy for object storage
Example 2: ILM rules and policy for EC object size filtering
Example 3: ILM rules and policy for better protection for image files
Example 4: ILM rules and policy for S3 versioned objects
Example 5: ILM rules and policy for Strict ingest behavior
Example 6: Changing an ILM policy
Example 7: Compliant ILM policy for S3 Object Lock
System hardening
Hardening a StorageGRID system
Hardening guidelines for software upgrades
Hardening guidelines for StorageGRID networks
Hardening guidelines for StorageGRID nodes
Hardening guidelines for server certificates
Other hardening guidelines
Configure StorageGRID for FabricPool
Configuring StorageGRID for FabricPool
Information needed to attach StorageGRID as a cloud tier
Best practices for load balancing
Best practices for high availability groups
Configuring the DNS server for StorageGRID IP addresses
Creating a high availability (HA) group for FabricPool
Creating a load balancer endpoint for FabricPool
Creating a tenant account for FabricPool
Creating an S3 bucket and obtaining an access key
Using StorageGRID information lifecycle management with FabricPool data
Example ILM policy for FabricPool data
Creating a traffic classification policy for FabricPool
Other best practices for StorageGRID and FabricPool
Use StorageGRID
Use a tenant account
Using the Tenant Manager
Web browser requirements
Signing in to the Tenant Manager
Signing out of the Tenant Manager
Understanding the Tenant Manager Dashboard
Understanding the Tenant Management API
Tenant Management API versioning
Protecting against Cross-Site Request Forgery (CSRF)
Managing system access for tenant users
Using identity federation
Configuring a federated identity source
Guidelines for configuring an OpenLDAP server
Forcing synchronization with the identity source
Disabling identity federation
Managing groups
Creating groups for an S3 tenant
Creating groups for a Swift tenant
Viewing and editing group details
Adding users to a local group
Editing a group name
Duplicating a group
Deleting a group
Managing local users
Managing S3 tenant accounts
Managing S3 access keys
Creating your own S3 access keys
Viewing your S3 access keys
Deleting your own S3 access keys
Creating another user’s S3 access keys
Viewing another user’s S3 access keys
Deleting another user’s S3 access keys
Managing S3 buckets
Using S3 Object Lock
S3 Object Lock workflow
Requirements for S3 Object Lock
Creating an S3 bucket
Viewing S3 bucket details
Changing the consistency level
Enabling or disabling last access time updates
Configuring Cross-Origin Resource Sharing (CORS)
Deleting an S3 bucket
Managing S3 platform services
What platform services are
Understanding the CloudMirror replication service
Understanding notifications for buckets
Understanding the search integration service
Considerations for using platform services
Configuring platform services endpoints
Specifying the URN for a platform services endpoint
Creating a platform services endpoint
Testing the connection for a platform services endpoint
Editing a platform services endpoint
Deleting a platform services endpoint
Troubleshooting platform services endpoint errors
Configuring CloudMirror replication
Configuring event notifications
Using the search integration service
Configuration XML for search integration
Configuring the search integration service
JSON generated by the search integration service
Object metadata included in metadata notifications
Use S3 REST API
Support for the S3 REST API
Changes to S3 REST API support
Supported versions
Support for StorageGRID platform services
Configuring tenant accounts and connections
How StorageGRID implements the S3 REST API
Conflicting client requests
Consistency controls
How StorageGRID ILM rules manage objects
Object versioning
Recommendations for implementing the S3 REST API
S3 REST API supported operations and limitations
Authenticating requests
Operations on the service
Operations on buckets
Custom operations on buckets
Operations on objects
Using S3 Object Lock
Using server-side encryptions
GET object
HEAD Object
POST Object restore
PUT Object
PUT Object - Copy
Operations for multipart uploads
List Multipart Uploads
Initiate Multipart Upload
Upload Part
Upload Part - Copy
Complete Multipart Upload
Error responses
StorageGRID S3 REST API operations
Bucket and group access policies
Configuring security for the REST API
Monitoring and auditing operations
Monitoring object ingest and retrieval rates
Accessing and reviewing audit logs
S3 operations tracked in the audit logs
Benefits of active, idle, and concurrent HTTP connections
Benefits of keeping idle HTTP connections open
Benefits of active HTTP connections
Benefits of concurrent HTTP connections
Separation of HTTP connection pools for read and write operations
Use Swift REST API
OpenStack Swift API support in StorageGRID
History of Swift API support in StorageGRID
How StorageGRID implements the Swift REST API
Recommendations for implementing the Swift REST API
Configuring tenant accounts and connections
Swift REST API supported operations
Supported Swift API endpoints
Account operations
Container operations
Object operations
OPTIONS request
Error responses to Swift API operations
StorageGRID Swift REST API operations
Configuring security for the REST API
Monitoring and auditing operations
Monitor and troubleshoot
Monitor a StorageGRID system
Using the Grid Manager for monitoring
Web browser requirements
Viewing the Dashboard
Viewing the Nodes page
Viewing the Overview tab
Viewing the Hardware tab
Viewing the Network tab
Viewing the Storage tab
Viewing the Events tab
Using the Task tab to reboot a grid node
Viewing the Objects tab
Viewing the ILM tab
Viewing the Load Balancer tab
Viewing the Platform Services tab
Viewing information about appliance Storage Nodes
Viewing the SANtricity System Manager tab
Viewing information about appliance Admin Nodes and Gateway Nodes
Information you should monitor regularly
Monitoring system health
Monitoring node connection states
Viewing current alerts
Viewing resolved alerts
Viewing a specific alert
Viewing legacy alarms
Monitoring storage capacity
Monitoring storage capacity for the entire grid
Monitoring storage capacity for each Storage Node
Monitoring object metadata capacity for each Storage Node
Monitoring information lifecycle management
Monitoring performance, networking, and system resources
Monitoring query latency
Monitoring network connections and performance
Monitoring node-level resources
Monitoring tenant activity
Monitoring archival capacity
Monitoring load balancing operations
Applying hotfixes or upgrading software if necessary
Managing alerts and alarms
Comparing alerts and alarms
Managing alerts
Managing alarms (legacy system)
Using SNMP monitoring
Configuring the SNMP agent
Updating the SNMP agent
Collecting additional StorageGRID data
Using charts and reports
Types of charts and graphs
Chart legend
Displaying charts and graphs
Generating charts
Types of text reports
Generating text reports
Exporting text reports
Monitoring PUT and GET performance
Monitoring object verification operations
Monitoring events
Reviewing previous events
Resetting event counts
Creating custom syslog events
Resetting the count of custom events to zero
Reviewing audit messages
Collecting log files and system data
Manually triggering an AutoSupport message
Viewing the Grid Topology tree
Reviewing support metrics
Running diagnostics
Creating custom monitoring applications
Alerts reference
Commonly used Prometheus metrics
Alarms reference (legacy system)
Alarms that generate SNMP notifications (legacy system)
Log files reference
StorageGRID software logs
Deployment and maintenance logs
Logs for third-party software
About the bycast.log
File rotation for bycast.log
Messages in bycast.log
Message severities in bycast.log
Error codes in bycast.log
Troubleshoot a StorageGRID system
Troubleshooting object and storage issues
Verifying object integrity
Troubleshooting lost and missing object data
Investigating lost objects
Searching for and restoring potentially lost objects
Resetting lost and missing object counts
Troubleshooting the Low object data storage alert
Troubleshooting the Storage Status (SSTS) alarm
Troubleshooting delivery of platform services messages (SMTT alarm)
Troubleshooting metadata issues
Troubleshooting certificate errors
Troubleshooting Admin Node and user interface issues
Troubleshooting network, hardware, and platform issues
Review audit logs
Audit message overview
Audit message flow and retention
Changing audit message levels
Accessing the audit log file
Audit log file rotation
Audit log file and message formats
Audit log file format
Using the audit-explain tool
Using the audit-sum tool
Audit message format
Data types
Event-specific data
Common elements in audit messages
Audit message examples
Audit messages and the object lifecycle
Object ingest transactions
Example: S3 object ingest
Object delete transactions
Example: S3 object deletion
Object retrieve transactions
Example: S3 object retrieval
Metadata update messages
Example: S3 metadata update
Audit messages
Audit message categories
System audit messages
Object storage audit messages
Client read audit messages
Client write audit messages
Management audit message
Audit messages
APCT: Archive Purge from Cloud-Tier
ARCB: Archive Object Retrieve Begin
ARCE: Archive Object Retrieve End
ARCT: Archive Retrieve from Cloud-Tier
AREM: Archive Object Remove
ASCE: Archive Object Store End
ASCT: Archive Store Cloud-Tier
ATCE: Archive Object Store Begin
AVCC: Archive Validate Cloud-Tier Configuration
CBRB: Object Receive Begin
CBRE: Object Receive End
CBSB: Object Send Begin
CBSE: Object Send End
ECOC: Corrupt Erasure Coded Data Fragment
ETAF: Security Authentication Failed
GNRG: GNDS Registration
GNUR: GNDS Unregistration
GTED: Grid Task Ended
GTST: Grid Task Started
GTSU: Grid Task Submitted
IDEL: ILM Initiated Delete
LKCU: Overwritten Object Cleanup
LLST: Location Lost
MGAU: Management audit message
OLST: System Detected Lost Object
ORLM: Object Rules Met
OVWR: Object Overwrite
SADD: Security Audit Disable
SADE: Security Audit Enable
SCMT: Object Store Commit
SDEL: S3 DELETE
SGET: S3 GET
SHEA: S3 HEAD
SPOS: S3 POST
SPUT: S3 PUT
SREM: Object Store Remove
SUPD: S3 Metadata Updated
SVRF: Object Store Verify Fail
SVRU: Object Store Verify Unknown
SYSD: Node Stop
SYST: Node Stopping
SYSU: Node Start
VLST: User Initiated Volume Lost
WDEL: Swift DELETE
WGET: Swift GET
WHEA: Swift HEAD
WPUT: Swift PUT
Maintain
Expand your grid
Planning a StorageGRID expansion
Adding storage capacity
Guidelines for adding object capacity
Adding storage capacity for replicated objects
Adding storage capacity for erasure-coded objects
Considerations for rebalancing erasure-coded data
Adding metadata capacity
Adding grid nodes to add capabilities to your system
Adding a new site
Preparing for an expansion
Overview of expansion procedure
Adding storage volumes to Storage Nodes
VMware: Adding storage volumes to a Storage Node
Linux: Adding direct-attached or SAN volumes to a Storage Node
Adding grid nodes to an existing site or adding a new site
Updating subnets for the Grid Network
Deploying new grid nodes
Performing the expansion
Configuring your expanded StorageGRID system
Verifying that the Storage Node is active
Copying the Admin Node database
Copying Prometheus metrics
Copying audit logs
Rebalancing erasure-coded data after adding Storage Nodes
Contacting technical support
Maintain & recover
Introduction to StorageGRID recovery and maintenance
Web browser requirements
Downloading the Recovery Package
StorageGRID hotfix procedure
Considerations for applying a hotfix
How your system is affected when you apply a hotfix
Obtaining the required materials for a hotfix
Downloading the hotfix file
Checking the system’s condition before applying a hotfix
Applying the hotfix
Grid node recovery procedures
Warnings and considerations for grid node recovery
Gathering required materials for grid node recovery
Downloading and extracting the StorageGRID installation files
Selecting a node recovery procedure
Recovering from Storage Node failures
Recovering a Storage Node that has been down more than 15 days
Recovering a StorageGRID appliance Storage Node
Preparing an appliance Storage Node for reinstallation
Starting StorageGRID appliance installation
Monitoring StorageGRID appliance installation
Selecting Start Recovery to configure an appliance Storage Node
Remounting and reformatting appliance storage volumes (“Manual Steps”)
Restoring object data to a storage volume for an appliance
Checking the storage state after recovering an appliance Storage Node
Recovering from storage volume failure where the system drive is intact
Reviewing warnings about storage volume recovery
Identifying and unmounting failed storage volumes
Recovering failed storage volumes and rebuilding the Cassandra database
Restoring object data to a storage volume where the system drive is intact
Checking the storage state after recovering storage volumes
Recovering from system drive failure
Reviewing warnings for Storage Node system drive recovery
Replacing the Storage Node
Selecting Start Recovery to configure a Storage Node
Remounting and reformatting storage volumes (“Manual Steps”)
Restoring object data to a storage volume, if required
Checking the storage state after recovering a Storage Node system drive
Recovering from Admin Node failures
Recovering from primary Admin Node failures
Copying audit logs from the failed primary Admin Node
Replacing the primary Admin Node
Configuring the replacement primary Admin Node
Restoring the audit log on the recovered primary Admin Node
Resetting the preferred sender on the recovered primary Admin Node
Restoring the Admin Node database when recovering a primary Admin Node
Restoring Prometheus metrics when recovering a primary Admin Node
Recovering from non-primary Admin Node failures
Copying audit logs from the failed non-primary Admin Node
Replacing a non-primary Admin Node
Selecting Start Recovery to configure a non-primary Admin Node
Restoring the audit log on the recovered non-primary Admin Node
Resetting the preferred sender on the recovered non-primary Admin Node
Restoring the Admin Node database when recovering a non-primary Admin Node
Restoring Prometheus metrics when recovering a non-primary Admin Node
Recovering from Gateway Node failures
Replacing a Gateway Node
Selecting Start Recovery to configure a Gateway Node
Recovering from Archive Node failures
Replacing an Archive Node
Selecting Start Recovery to configure an Archive Node
Resetting Archive Node connection to the cloud
All grid node types: Replacing a VMware node
All grid node types: Replacing a Linux node
Deploying new Linux hosts
Restoring grid nodes to the host
Restoring and validating grid nodes
Fixing missing network interface errors
Fixing missing block device errors
Starting the StorageGRID host service
Recovering nodes that fail to start normally
What’s next: Performing additional recovery steps, if required
Replacing a failed node with a services appliance
Installing a services appliance (platform change only)
Preparing an appliance for reinstallation (platform replacement only)
Starting software installation on a services appliance
Monitoring services appliance installation
How site recovery is performed by technical support
Decommission procedure
Grid node decommissioning
Preparing to decommission grid nodes
Considerations for decommissioning grid nodes
Considerations for decommissioning Admin Nodes or a Gateway Nodes
Considerations for decommissioning Storage Nodes
Understanding the ADC quorum
Reviewing the ILM policy and storage configuration
Decommissioning disconnected Storage Nodes
Consolidating Storage Nodes
Decommissioning multiple Storage Nodes
Checking data repair jobs
Gathering required materials
Accessing the Decommission Nodes page
Decommissioning disconnected grid nodes
Decommissioning connected grid nodes
Pausing and resuming the decommission process for Storage Nodes
Troubleshooting node decommissioning
Site decommissioning
Considerations for removing a site
Gathering required materials
Step 1: Select Site
Step 2: View Details
Step 3: Revise ILM Policy
Step 4: Remove ILM References
Step 5: Resolve Node Conflicts (and start decommission)
Step 6: Monitor Decommission
Network maintenance procedures
Updating subnets for the Grid Network
Configuring IP addresses
Changing a node’s network configuration
Adding to or changing subnet lists on the Admin Network
Adding to or changing subnet lists on the Grid Network
Linux: Adding interfaces to an existing node
Changing IP addresses for all nodes in the grid
Configuring DNS servers
Modifying the DNS configuration for a single grid node
Configuring NTP servers
Restoring network connectivity for isolated nodes
Host-level and middleware procedures
Linux: Migrating a grid node to a new host
Linux: Exporting the node from the source host
Linux: Importing the node on the target host
Linux: Starting the migrated node
Archive Node maintenance for TSM middleware
VMware: Configuring a virtual machine for automatic restart
Grid node procedures
Viewing Server Manager status and version
Viewing current status of all services
Starting Server Manager and all services
Restarting Server Manager and all services
Stopping Server Manager and all services
Viewing current status of a service
Stopping a service
Placing an appliance into maintenance mode
Forcing a service to terminate
Starting or restarting a service
Removing port remaps
Removing port remaps on bare metal hosts
Rebooting a grid node
Rebooting a grid node from the Grid Manager
Rebooting a grid node from the command shell
Shutting down a grid node
Powering down a host
Powering off and on all nodes in the grid
Stopping services and shutting down grid nodes
Starting up the grid nodes
Using a DoNotStart file
Adding a DoNotStart file for a service
Removing a DoNotStart file for a service
Troubleshooting Server Manager
Accessing the Server Manager log file
Service with an error state
Appliance node cloning
How appliance node cloning works
Considerations and requirements for appliance node cloning
Appliance node cloning procedure
Other versions
Legal notices