Registering the object storage authentication information for each transfer destination (bucket)

This section explains the individual settings by using an example of how to register the Storage Authentication Information.

This example shows how to register the authentication information to use Amazon S3 in the Storage Authentication Information on the Cloud Storage DB and how to set the authentication information for each transfer destination.

Although the example is for Amazon S3, you can register for other object storage in the same way using the command for the relevant object storage.

 

The procedure to register the Storage Authentication Information for Amazon S3 is as follows:

Table D.7 Example of setting values for the Storage Authentication Information

Field Name in Storage Authentication Information

Setting Value

Register or Not

Storage Authentication Information ID

cloudauth

AWS Access Key

ABCDEFGH

AWS Secret Access Key

123456789

Session Token

Not specified

-

Enable IAM Role

Not specified

-

Switch Role ARN

Not specified

-

External ID

Not specified

-

Role Session Name

Not specified

-

:

Register the setting value

-

:

Do not register the setting value

 

  1. Register the values for AWS Access Key and AWS Secret Access Key using the registration command of the Storage Authentication Information.

    utls3infoadd -t auth --id cloudauth --access-key ABCDEFGH --secret-access-key 123456789

    For details on the registration command of the Storage Authentication Information for Amazon S3, refer to Registration command of the Storage Authentication Information (Amazon S3).

    The following list is output:

    $ utls3infoadd -t auth --id cloudauth --access-key ABCDEFGH --secret-access-key 123456789 
The Storage Authentication Information "cloudauth" will be registered. 
Access Key: ABCDEFGH 
Secret Access Key: 123456789 
Session Token:     Use the default value. 
Enable IAM Role:   Use the default value. 
Switch Role ARN:   Use the default value. 
External ID:       Use the default value. 
Role Session Name: Use the default value.

    Check whether the values for AWS Access Key and AWS Secret Access Key are changed to the specified values.

    If you do not specify "-f" or "--force" with the registration command of the Storage Authentication Information, the following confirmation message is output:

    Are you sure to register? [y/n]:

    After the confirmation message is output, input "y" or "Y" to execute the registration command of the Storage Authentication Information.

     

  2. Specify the value that is set for Storage Authentication Information ID in the Storage Authentication Information as the value for Storage Authentication Information ID in the Receive Storage Management Information or Send Storage Management Information (hereafter referred to as Storage Management Information).

    When the Storage Authentication Information is linked to the Storage Management Information, the information that is set for AWS Access Key and AWS Secret Access Key is used.

    When you specify a value for Storage Authentication Information ID in the Storage Management Information, specify the value in the Storage Management Information in the same way as the registration and modification of transfer-related information.

    Refer to the following examples:

 

For details on the command for other object storage, refer to the following: