Amazon S3 storage components

Each Amazon S3 component represents a single endpoint that’s used to access cloud storage using one or more Amazon S3 Web Services user accounts.

To enable HCP to access the storage that’s represented by an Amazon S3 storage component, when you create that component, you specify the following information:

The component name.

Optionally, a description of the component.

Optionally, the network you want HCP to use for communication with storage component. This field is only visible if Virtual network management is enabled. For more information on selecting a network, see Isolating networks for storage tiering.

Whether you want HCP to use the default endpoint, s3.amazonaws.com, to connect to Amazon S3 Web Services, and if not, the fully qualified domain name (FQDN) of the endpoint that you want HCP to use instead of the default.

Optionally, any of these advanced configuration settings:

oWhether you want HCP to use HTTPS to access the endpoint, and if so, the HTTPS port you want to use to connect to the endpoint (default is 443)

oThe HTTP port you want to use to connect to the endpoint (default is 80)

oWhether you want to use a proxy server to connect to the endpoint, and if so, the following information about the proxy server:

The hostname or IP address of the proxy server

The port number you want to use to connect to the proxy server (default is 0)

The username, password, and AD domain of the user account that HCP needs to use to access the proxy server

oWhether you want HCP to use path-style URLs to access the storage that’s represented by the storage component, and if so, the region that includes the Amazon S3 Web Services datacenter that hosts the storage that’s represented by this component

Note: If you select this option, you need to specify a region-specific endpoint instead of using the default endpoint.

oThe region that includes the Amazon S3 Web Services datacenter that hosts the storage that’s represented by this component (default is us-east-1)

Note: For faster access to storage located in a particular region, you should specify a region-specific endpoint instead of using the default endpoint.

oWhether the extended storage component to supports S3 metadata on objects. Please contact your service provider if you are unsure whether S3 metadata is supported.

oIn the Max metadata size field, type the maximum size (in bytes) of the S3 metadata that will be attached to objects tiered to the storage component. Each extended storage service provider permits a different maximum size. Please contact your service provider to learn the maximum size.

Whether the storage that’s represented by this component is considered to be compliant.

The account label that you want to associate with the initial Amazon S3 Web Services user account that you want HCP to use to access the storage that’s represented by the component. In the System Management Console, HCP uses the account label to represent the user account with the specified credentials.

The authentication method you want to use to authenticate all requests sent to HCP.

The access key and secret key for the Amazon S3 Web Services user account that you want HCP to use to access the storage that’s represented by the component.

Note: Once you create an Amazon S3 storage component, you can modify it to specify credentials for one or more additional user accounts. For details on this, see Configuring a new user account for access to an extended storage endpoint.

If you are using AWS STS or CAP authentication, the authentication endpoint text field appears. This is the endpoint to which you send your credentials in order to generate an AWS STS authentication token.

If you are using CAP authentication, the authentication port field appears. Enter the port of your CAP endpoint.

If you are using CAP authentication, the authentication certificate drop down menu appears. This lets you select the account certificate which connects HCP to the CAP authentication endpoint. In order to see the account certificate in the dropdown field, it must already exist in the HCP system. To upload an account certificate, see Uploading an account certificate for CAP authentication

Uploading an account certificate for CAP authentication

Optionally, any custom request headers that you want HCP to include in the access request URLs that are sent to Amazon S3 Web Services to request read or write access to the storage associated with the specified user account.

Whether you want to access existing buckets associated with the specified user account, and if so, the name of each existing bucket you want to access.

Note:  

At any given time, a bucket can be associated with only one storage component.

You can add an existing bucket to an Amazon S3 storage component only if that bucket is empty or has only HCP data in it.

Whether you want to create any new buckets for the specified user account, and if so, the name of each new bucket you want to create.

Note: By default, the Add Component wizard displays a list of the existing buckets that HCP is able to access using the specified user account credentials, but the wizard does not display the controls required to create a new bucket. To create a new bucket, you need to click on Bucket Actions, then select the Create new option from the dropdown list, then specify the name of the bucket you want to create.

Trademark and LegalDisclaimer

© 2016 Hitachi Data Systems Corporation. All rights reserved.