Use the following information to add or modify an Amazon S3 cloud storage library with AWS STS Assume Role Policy authentication in the Add / Edit Cloud Storage (General) dialog box in CommCell Console.
Note
Refer to Amazon S3 documentation for additional information on the inputs required in this dialog box.
Authentication
AWS STS Assume Role Policy - For more information on Amazon STS (Security Token Service), refer to http://docs.aws.amazon.com/STS/latest/APIReference/Welcome.html and http://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp.html.
Service Host
A valid endpoint name for the Amazon S3 region provided by the agency.
Default: s3.[region].amazonaws.com. For example, s3.us-west-1.amazonaws.com.
To find the region, see https://docs.aws.amazon.com/general/latest/gr/rande.html.
Role ARN
Name of the ARN role.
Access Key ID
Access key ID for the account.
Secret Access Key
Secret Access Key for the account.
Bucket
To recall data from Amazon Glacier Glacier/Deep Archive or Combined Tier Storage Classes, make sure that the user associated with the bucket has the RestoreObject permission. For more information on POST Object restore, see https://docs.aws.amazon.com/AmazonS3/latest/API/RESTObjectPOSTrestore.html.
Storage Class
The following Amazon S3 storage classes are supported for Commvault Cloud Storage libraries:
-
Standard
-
Standard - Infrequent Access
-
One Zone - Infrequent Access
-
Intelligent - Tiering
-
Standard/Glacier (Combined Storage Tiers)
-
Standard-IA/Glacier (Combined Storage Tiers)
-
One Zone-IA/Glacier (Combined Storage Tiers)
-
Intelligent-Tiering/Glacier (Combined Storage Tiers)
-
Standard/Deep Archive (Combined Storage Tiers)
-
Standard-IA/Deep Archive (Combined Storage Tiers)
-
One Zone-IA/Deep Archive (Combined Storage Tiers)
-
Intelligent-Tiering/Deep Archive (Combined Storage Tiers)
-
Glacier
-
Deep Archive
-
Reduced Redundancy Storage
Reference https://aws.amazon.com/s3/storage-classes/ for more information.