Home » Posts tagged 'AWS'

Tag Archives: AWS

Translate:

Archives

Creating Bucket in AWS

 

Amazon S3 is cloud storage for the internet. To upload your data (photos, videos, documents etc…), you first create a bucket in one of the AWS Regions. You can then upload any number of objects to the bucket.

 

Creating Bucket

Login into AWS Portal AWS Console Login

The moment you login to console you can see search Tab under AWS Services under “All Services” Search for S3 under Storage….

 

 

Click S3

 

 

Click Create bucket

Below are the steps to follow creating bucket

1: Name and Region

2: Set Properties

3: Set Permissions

4: Review

 

Let’s discuss Step by Step

 

1: Name and Region

 

 

Provide the details like bucket name and region…..

Note: Name should not contain Upper case and special characters and it should be unique….

 

 

Click Next

 

2: Set Properties which contains

Versioning

Versioning enables you to keep multiple versions of an object in one bucket.

Server Access Logging

Server access logging provides detailed records for the requests that are made to a bucket. Server access logs are useful for many applications. For example, access log information can be useful in security and access audits. It can also help you learn about your customer base and understand your Amazon S3 bill.

 

Tags

To track the storage cost or other criteria for individual projects or groups of projects, label your Amazon S3 buckets using cost allocation tags. A cost allocation tag is a key-value pair that you associate with an S3 bucket. After you activate cost allocation tags, AWS uses the tags to organize your resource costs on your cost allocation report. Cost allocation tags can only be used to label buckets.

 

Object-Level Logging (or) Data Events

Data events provide insight into the resource operations performed on or within a resource. These are also known as data plane operations. Data events are often high-volume activities.

Example data events include:

  • Amazon S3 object-level API activity (for example, GetObject, DeleteObject, andPutObject API operations)
  • AWS Lambda function execution activity (the Invoke API)

 

Note: This is cost oriented

Default Encryption

Amazon S3 default encryption provides a way to set the default encryption behavior for an S3 bucket. You can set default encryption on a bucket so that all objects are encrypted when they are stored in the bucket. The objects are encrypted using server-side encryption with either Amazon S3-managed keys (SSE-S3) or AWS KMS-managed keys (SSE-KMS).

We are leaving as default as this is for testing purpose….

 

 

Click Next

3: Set Permissions

 

 

Here we will see multiple Tabs like

1: Manage Users

2: Access for other AWS Account

3: Manage Public Permissions

4: Manage System Permissions

 

Let’s discuss Step by Step

1: Manage Users

Here default you will see Owner account with full permissions like

Read &

Write

 

 

In case if you want to add account click Add Account under “Access for other AWS Account”

2: Access for other AWS Account

Here we have created Test user account with Limited permissions like Read

 

User ID : Techrid

Objects : Read

Object Permissions : Read

 

 

Click Save

 

 

Account been added

 

3: Manage Public Permissions

Under Manage Public Permissions we will see two options

a: Do not grant public read access to this bucket (Recommended)

b: Grant public read access to this bucket

Will go with Default and recommended as it’s for testing purpose so have selected option “a”

 

 

4: Manage System Permissions

 

 

Click Next

 

4: Review

Check if everything assigned or given according to your requirement and proceed further…..

Click Create bucket

 

 

Great bucket got created….

 

 

Now if you want to Upload,  Set Properties, Set Permissions & Managing click on bucket that you have created.

 

 

 

Under Overview you can Upload Pictures,  Files, etc.…

Under Tab Permissions you can view or edit

Access Control List for Permissions

Bucket Policy for Assigning Policies

CORS configuration for Moving or Sharing Web Applications from One Domain to Another Domain

 

 

Under Tab Management you can define rules as shown below:

 

 

Now go ahead and define your rules…..

Stay focused for more articles on AWS…..

 

Thanks,

Praveen Kumar

Cloud Practitioner – Azure & AWS

Translate »