Connections > Amazon S3 V2 connection > Connect to Amazon S3
  

Connect to Amazon S3

Let's configure the Amazon S3 connection properties to connect to Amazon S3.

Before you begin

Before you get started, you'll need to get information from your Amazon S3 account based on the authentication type that you want to configure.
The following video shows you how to get information from your AWS account:
https://infa.media/3CuOKFQ
Check out Prepare for authentication to learn more about the authentication prerequisites.

Connection details

The following table describes the connection properties:
Property
Description
Connection Name
Name of the connection.
Each connection name must be unique within the organization. Connection names can contain alphanumeric characters, spaces, and the following special characters: _ . + -,
Maximum length is 255 characters.
Description
Description of the connection. Maximum length is 4000 characters.
Type
Amazon S3 V2
Use Secret Vault
Stores sensitive credentials for this connection in the secrets manager that is configured for your organization.
This property appears only if secrets manager is set up for your organization.
When you enable the secret vault in the connection, you can select which credentials that the Secure Agent retrieves from the secrets manager. If you don't enable this option, the credentials are stored in the repository or on a local Secure Agent, depending on how your organization is configured.
For information about how to configure and use a secrets manager, see Secrets manager configuration.
Runtime Environment
The name of the runtime environment where you want to run tasks.
Informatica Cloud Hosted Agent, the runtime environment where you want to run tasks.

Authentication types

You can configure basic, AWS Identity and Access Management (IAM), temporary security credentials, assume role for EC2, credential profile file, and federated user single sign-on authentication types to access Amazon S3.
Select the required authentication method and then configure the authentication-specific parameters.

Advanced settings

The following table describes the advanced connection properties:
Property
Description
S3 Account Type
The type of the Amazon S3 account.
Select from the following options:
  • - Amazon S3 Storage. Enables you to use the Amazon S3 services.
  • - S3 Compatible Storage. Enables you to use the endpoint for a third-party storage provider such as Scality RING or MinIO.
Default is Amazon S3 storage.
REST Endpoint
The S3 storage endpoint required for S3 compatible storage.
Enter the S3 storage endpoint in HTTP or HTTPs format.
For example, http://s3.isv.scality.com.
S3 VPC Endpoint Type
Doesn't apply to a data loader task.
Endpoint DNS Name for Amazon S3
Doesn't apply to a data loader task.
STS VPC Endpoint Type
Doesn't apply to a data loader task.
Endpoint DNS Name for AWS STS
Doesn't apply to a data loader task.
KMS VPC Endpoint Type
Doesn't apply to a data loader task.
Endpoint DNS Name for AWS KMS
Doesn't apply to a data loader task.
Master Symmetric Key
A 256-bit AES encryption key in the Base64 format when you use client-side encryption. You can generate a key using a third-party tool.
Customer Master Key ID
The customer master key ID or alias name generated by AWS Key Management Service (AWS KMS) or the Amazon Resource Name (ARN) of your custom key for cross-account access.
You must generate the customer master key for the same region where the Amazon S3 bucket resides.
You can specify the following master keys:
  • - Customer generated customer master key. Enables client-side or server-side encryption.
  • - Default customer master key. Enables client-side or server-side encryption. Only the administrator user of the account can use the default customer master key ID to enable client-side encryption.