This article explains how to set up a Diplomat transaction with Amazon S3 cloud storage as a source or destination.
1. Prerequisites
- An Amazon Web Services (AWS) account.
- At least one AWS S3 bucket defined.
- Authorization credentials, which consist of a Key ID and a Secret Key.
2. Generate AWS Credentials
AWS can be accessed with root credentials or with IAM user credentials:
- To use IAM user credentials go to http://docs.aws.amazon.com/java-sdk/latest/developer-guide/signup-create-iam-user.html, which describes how to create an IAM user and its access key. Save both the Access Key ID and the Secret Key to be used when setting up a Diplomat transaction. You must also ensure that you have granted the IAM user sufficient permissions.
- To use root credentials:
- Login to your AWS account and then go to the Security Credentials page.
- Click 'Access Keys'.
- Click 'Create New Access Key'.
- Click 'Download Key File'.
- A file called rootkey.csv will be downloaded. Its contents will look like:
AWSAccessKeyId=AKIAJXYZCARVOIDSNTA
AWSSecretKey=XdOWAHPU+IuxkAFMdxyzFMHgiNI6Xtvoid1CQ
- Copy and paste the string 'AKIAJXYZCARVOIDSNTA' into Diplomat's 'Key ID' field.
- Copy and paste the string 'XdOWAHPU+IuxkAFMdxyzFMHgiNI6Xtvoid1CQ' into Diplomat's 'Secret Key' field.
3. Set Up AWS S3 Policies To Enable Access
Refer to this KB article for details.
4. Set Up Diplomat Transaction
- Open the Diplomat MFT Client.
- Under Transactions from the top menu bar, select either Create Inbound or Create Outbound to create a new transaction
- Choose 'Amazon S3' as the transport type.
- Fill the 'Key ID' field with Key ID of your AWS credentials.
- Fill the 'Secret Key' field with the Secret Key of your AWS credentials.
- Fill the 'Bucket' field with the name of the S3 bucket to be used.
- The 'Directory' field is optional. When used, it refers to a sub-directory of the bucket.
- Click the 'Test' button to see the current contents of your bucket or sub-directory.