Creating Amazon S3 Bucket based Network share
FileCloud v13 supports mounting existing AWS S3 bucket as a Network Folder.
This allows exposing the S3 bucket via FileCloud Server.
To create a network share from a S3 bucket, follow these steps:Login to the Administration Portal
- Navigate to "Network Folders" in left navigation panel
- Click on "Add" Button to launch the "New Network Folder" dialog box
- Select "Amazon S3 Bucket" from the dropdown list and click "Next" button
- Provide a name for the Network Folder
- Provide S3 credentials
- Select the type of encryption.
- Provide the bucket name ,region and end point associated with the bucket. End point is optional.
- Finally, when the S3 bucket is mounted as a network share, permissions need to be assigned to users or group to allow access.
The network share access can be granted to
Note: There is no versioning or recycle bin support for Amazon S3 bucket based network shares at this time.
Modifying Amazon S3 Bucket based Network share
Once the network share is created, it can be modified using the "edit" button for that share from the Network Folders list.
The details dialog also allows the following options
|S3 Encryption Setting|
When this option is set the files in the S3 network share are not encrypted.
Amazon S3-Managed Key encryption
When this option is set the files are encrypted. Server-side encryption with Amazon S3-managed encryption keys (SSE-S3) employs strong multi-factor encryption.
Amazon S3 encrypts each object with a unique key. As an additional safeguard, it encrypts the key itself with a master key that it regularly rotates.
Amazon S3 server-side encryption uses one of the strongest block ciphers available, 256-bit Advanced Encryption Standard (AES-256), to encrypt your data.
Amazon KMS-Managed Key Encryption
When this option is set the files are encrypted using AWS KMS key. AWS KMS uses customer master keys (CMKs) to encrypt your Amazon S3 network
share. You use AWS KMS via the Encryption Keys section in the IAM console or via AWS KMS APIs to centrally create encryption keys, define the policies that control how keys can be used,
and audit key usage to prove they are being used correctly.
Note: Unlike s3 managed storage encryption, enabling encryption in network share will only encrypt only newly added files and will not encrypt existing files.
|Disable Offline Sync||Enabling this option will prevent this network share from being available for sync via FileCloud sync client|
Sharing the content of the network share can be disabled or enabled using this option
Allow Remote Deletion of Files
via Offline Sync
|Enabling this function will allow deleting files in the S3 Bucket if the files are deleted in the synced client. By default deletes are not propagated to S3 bucket when deleted via Sync client.|