Attach an Amazon Web Services (AWS) volume

Overview

Attach a volume for use on the Seven Bridges Platform's visual interface. Use this tutorial if your cloud storage provider is Amazon Web Services (AWS).

Or, learn more if the storage bucket that you want to attach is hosted on Google Cloud Storage (GCS).

Prerequisite

  1. AnΒ Amazon Web Services (AWS)Β account.
  2. One or moreΒ bucketsΒ on this AWS account.

Step 1: Access the Volumes Dashboard

  1. Click on theΒ DataΒ tab of the top navigation bar.
  2. SelectΒ VolumesΒ from the drop-down menu.

Step 2: Choose a cloud storage provider

  1. On the Volumes Dashboard, click +Connect Storage.
  2. Select Amazon Web Services as your cloud storage provider and click Next.

Step 3: Provide S3 bucket details

  1. Enter your S3 bucket name, as displayed in the AWS Management Console.Β 
  2. (Optional) Define a new name for the volume created from this S3 bucket on the Platform. The following characters are allowed for naming a volume: A-Z, a-z, 0-9, and β€œ_”. An underscore can only be used between characters. The minimum number of characters is 3, while the maximum is 32.
  3. (Optional) Enter a description for your volume.
  4. Select access privileges: choose between Read only (RO) and Read and Write (RW) permissions.
  5. (Optional) enter a prefix. Learn more about prefixes.
  6. Click Next.

Step 4: Copy the policy

In this step, copy the policy and use it to create a new custom policy in theΒ AWS Management Console.

  1. Copy the policy from the text box on the Seven Bridges Platform.
  2. Go to the AWS Management Console.
  3. In the top menu selectΒ ServicesΒ and then chooseΒ IAM.
  4. In the left navigation menu selectΒ Policies.
  5. ClickΒ Create policyΒ and select theΒ JSONΒ tab.
  6. Paste the policy you copied from the wizard on the Platform, replacing the existing content.
  7. ClickΒ Review policyΒ and enter a policy name, e.g.Β sb-access-policyΒ (remember this policy name as you will need to attach it later to the IAM user).
  8. (Optional) Enter the policy description.
  9. ClickΒ Create policy to finish process of policy creation.

Step 5: Set up an IAM user and enter its details

Authentication of the Platform is done through AWS Identity and Access Management (IAM) services, specifically through anΒ IAM user.

Follow these steps to set up an AWS IAM userΒ that you will use to connect an S3 bucket (volume) to the Seven Bridges Platform:

  1. Go to theΒ AWS Management Console.
  2. In the top menu selectΒ ServicesΒ and then chooseΒ IAM.
  3. In the left navigation menu selectΒ Users,Β and then chooseΒ Add user.
  4. Enter theΒ User nameΒ for the user you are creating.
  5. In theΒ Access typeΒ section, selectΒ Programmatic access.
  6. ClickΒ Next: Permissions.
  7. In theΒ Set permissionsΒ section selectΒ Attach existing policies directly.
  8. Use search bar to find and select the policy you created earlierΒ (e.g.Β sb-access-policy)
  9. ClickΒ Next: Tags.
  10. (Optional) Add tags to the user. These are key-value pairs that contain additional information about the IAM user and are not necessary for the process of attaching a volume to the Seven Bridges Platform.
  11. ClickΒ Next: Review. The user details screen is displayed. Check once again that all entered information is correct.
  12. ClickΒ Create user. You will see a message that the user is successfully created.
  13. On the confirmation screen, copy the providedΒ Access key IDΒ andΒ Secret access keyΒ and use them for volume creation on the Seven Bridges Platform.
  14. ClickΒ Close.
  15. On the Seven Bridges Platform, enter Access Key ID and Secret Access Key in the corresponding fields of the volume connection wizard.
  16. ClickΒ Next.

Step 6: Configure additional options

In this tab, you have the option to configure the endpoint, including a FIPS endpoint if you need to use one. You can also set up server-side encryption, and AWS Canned ACL.

Step 7: Review volume details

On this tab, review the details for your volume and click Connect.

Next step

Congratulations! You've attached your volume to the Platform. You can makeΒ individual data objects within it available as "aliases"Β on the Platform. Aliases point to files stored on your cloud storage bucket and can be copied, executed, andΒ organized like normal filesΒ on the Platform. We call this operation "importing". Learn more aboutΒ working with aliases.