Skip to main content
Close
Hitachi Vantara Knowledge

S3 User Credentials

  1. Last updated
  2. Save as PDF

This section describes the S3 User Credentials application.

Amazon Web Services uses security credentials, called S3 credentials, to authenticate and authorize data requests. The credentials consist of an access key and a secret key. Client applications that post S3 requests, such as uploading documents, reading documents, and adding buckets, to Hitachi Content Platform for cloud scale (HCP for cloud scale) also need these credentials. HCP for cloud scale provides a simple application, S3 User Credentials, to obtain these credentials for registered users of the system. It obtains an OAuth token from system services once you log in.

Parent Topic
Child Topics

Obtaining S3 credentials

You can use the S3 User Credentials application or APIs to obtain S3 credentials.

The S3 User Credentials application retrieves credentials (access and secret key) to access Amazon S3 bucket services. These credentials are linked to the username and password supplied in the API call. Thus, each unique user will retrieve a unique set of credentials.

If a user makes multiple, repeated API calls, only the last set of credentials remain active. Previously retrieved credentials become invalidated and will no longer work. Credentials expire automatically when the user changes the password held in the identity provider.

Parent Topic
Child Topics
S3 User Credentials application instructions
Use the S3 User Credentials application to obtain S3 access credentials.

Obtaining credentials nullifies any pre-existing S3 credentials you may already have.

To obtain S3 credentials:

Procedure

  1. From the Applications page, select the application S3 User Credentials.

  2. Click Generate S3 Credentials.

    You are warned that any existing credentials will be nullified.

  3. Click Generate.

Results

The application generates and displays an Access Key and a Secret Key.

Next steps

You can copy and paste these credentials into the client application you use to post S3 requests to HCP for cloud scale.

Parent Topic
Related API method
 
POST /s3/user/generate_credentials

For information about specific API methods, in the Object Storage Management application, click the profile icon and select REST API.

Parent Topic

Revoking S3 credentials

Amazon S3 credentials can be revoked by the associated user or by other users with appropriate permissions. If you have permissions you can revoke all Amazon S3 credentials belonging to a specific user. Use the endpoint /user/list to look up the ID of the user for whom you want to revoke credentials.

Related API methods 
POST /user/list
POST /user/revoke_credentials

For information about specific API methods, in the Object Storage Management application, click the profile icon and select REST API.

Parent Topic

 

  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    Reference
    Page Type
    Documentation Article
  2. Tags
    1. S3 User Credentials