How to setup an Amazon S3 bucket as an Archive location | Ottomatik

How to setup an Amazon S3 bucket as an Archive location

In order to use Amazon S3 as an Archive, you need to give Ottomatik access to the "bucket".  The required information will consist of the following information which you will enter into the Ottomatik "New Archive" form:

  • AWS Region
  • Bucket name
  • Access key ID
  • Secret access key
As a best practice you should create a bucket, user, and permission policy specifically for Ottomatik to access your S3 account with.  The following directions will provide specifics on how to do each.
 
Step 1:  Create an Amazon S3 bucket.

See the steps in the screen capture below for creating a bucket.  The resulting information that you'll want to note is 1) the bucket name and 2) the region where you create it.
 
The bucket name can be anything you want, but keep in mind that the name must be unique across all of Amazon S3.

 

Step 2: Create an AWS user to access the bucket with

As a best practice you should create a user who's only purpose is for use with accessing the bucket created above.

See the steps in the screen capture below for creating a user.  The resulting information that you'll want to note is 1) the Access Key ID and 2) the Secret Access Key.

Its a good idea to downolad the credentials CSV file when prompted, because you wont be able to see these credentials again.

 


Step 3: Create an access control policy

Now that you have a bucket and a user, you'll want to define the permissions that user has to the bucket.  Since we are using the user and bucket in a pair configuration you should give the user full access to the bucket (since it shouldn't be used for anything else).

See the steps in the screen capture below for creating the access control policy.  After you create the policy here, you'll assign it to the user in the next step.

When you are completing the 'edit permissions' form there will be a field for the "Amazon Resource Name (ARN)".  This is a particular string which will contain the bucket name (twice).  In the sample below BUCKET_NAME should be repalced with your bucket name created in Step 1.

arn:aws:s3:::BUCKET_NAME,arn:aws:s3:::BUCKET_NAME/*

Here is an example with the bucket name "acme-ottomatik-archive":

arn:aws:s3:::acme-ottomatik-archive,arn:aws:s3:::acme-ottomatik-archive/*

 


Step 4: Assign the policy to the user you created in Step 2

See the steps in the screen capture below for assigning your new policy to the user you previously created.  Now the user should have the required access necessary for managing files in the associated bucket.  Now you should have all the information needed to provide in the Ottomatik 'New Archive' form.