The C2S CAP server acts as an intermediary between HCP and AWS STS authentication. CAP looks up the user's S3 credentials based off HCP account credentials sent to CAP. If the check passes, CAP then sends the S3 credentials to a predefined AWS STS endpoint. STS, in turn, issues a temporary token which CAP sends back to HCP.
C2S CAP authentication can only be used with the S3 compatible component. In order to use C2S CAP authentication you need to provide an account certificate.
To upload a C2S CAP certificate:
1.On the Storage►Certificates & Keys page, under the Account Certificates panel, click on the Browse button and navigate to the location of your C2S CAP authentication certificate.
2.Click on the Upload Certificate button.
3.Click on the Next button.
4.Review your certificate information.
5.Click on the Finish button.
![]() |
Roles: In order to upload a account certificate, you need the administrator role. |
© 2016 Hitachi Data Systems Corporation. All rights reserved.