Amazon S3

Edit online

IBM® Storage Protect for Cloud will by default use HTTPS (SSL) communication to access your Amazon S3 storage and store your backup data to the S3 Glacier Instant Retrieval automatically. Your existing backup data before the March 2025 release will remain in the S3 Standard storage class. You can move the backup data from S3 Standard/S3 Glacier Instant Retrieval to S3 Standard-IA®, S3 One Zone-IA, or S3 Intelligent-Tiering, and IBM Storage Protect for Cloud Microsoft™ 365 can restore the backup data of those storage classes. However, you should carefully consider the consequences before you activate the archive access tier if you are using S3 Intelligent-Tiering. Activating the archive access tier will cause data object files that have not been accessed for 90 days to be archived, and IBM Storage Protect for Cloud Microsoft 365 cannot access the archived data in your Amazon S3 storage.

Procedure

Follow the instructions below:
  1. Storage Type – Select Amazon S3 from the drop-down list.
  2. Bucket name – Enter the bucket name you wish to access.
    Note the following:
    • The entered name must match an existing bucket. If no bucket is available, refer to Creating a bucket to create one.
    • Ensure the bucket policy in Amazon S3 storage applied to your account contains the following required permissions:
      • Read: Get Object
      • List: ListBucket
      • Write: DeleteObject; PutObject; DeleteObjectVersion
  3. Access key ID – Enter the corresponding access key ID to access the specified bucket. You can view the Access key ID from your AWS account.
    Note: The AWS account must have the AmazonS3FullAccess policy assigned.
  4. Secret access key – Enter the corresponding secret key ID to access the specified bucket. You can view the Secret access key from your AWS account.
  5. Storage region – Select the Storage region of this bucket from the drop-down menu.
    The available regions are:
    US East (N. Virginia) US East (Ohio) US West (Northern California)
    US West (Oregon) Canada (Central) EU (Ireland)
    EU (Frankfurt) EU (London) Asia Pacific (Singapore)
    Asia Pacific (Tokyo) Asia Pacific (Sydney) Asia Pacific (Seoul)
    Asia Pacific (Mumbai) South America (Sao Paulo)
  6. Extended Parameters – Enter the following extended parameters if necessary. If you have multiple parameters to enter, press Enter on your keyboard to separate the parameters. Refer to the instructions below to add parameters.
    • RetryInterval – Customize the retry interval when the network connection is interrupted. Enter any positive integer between 0 and 2147483646 (the unit is millisecond). For example, RetryInterval=30000 means that it will try to reconnect every 30000 milliseconds.

      If you do not configure this parameter, the value is 30000 milliseconds by default.

    • RetryCount – Customize the reconnection times after the network connection is interrupted. Enter any positive integer between 0 and 9. For example, RetryCount=9 represents when the network connection is interrupted, it can reconnect at most 9 times.

      If you do not configure this parameter, the value is 6 by default.

    • CustomizedMetadata – Configure if customized metadata or user-added metadata is supported. By default, customized metadata and user-added metadata are all supported.
    • CustomizedMode=Close – This physical device will not support customized metadata or user-added metadata.
    • CustomizedMode=SupportAll – This physical device will support all customized metadata and user-added metadata.
    • CustomizedMode=CustomizedOnly – This physical device will only support user-added metadata.
    • CustomizedRegion – Configure the customized region of the physical device. For example, enter CustomizedRegion=s3-us-gov-west-1.amazonaws.com to configure the GovCloud account.