S3 User Portal
4 minute read
In this section we will show you how to create a default group and assign permissions for the plusserver S3 web interface. This will allow users in this group to access all buckets.
Login to the plusserver S3 web interface
open your web browser and visit the following web page: https://s3-portal.psmanaged.com:9443/
use the user credentials provided to you (you can find them in plusserver customer portal: https://customerservice.plusserver.com/ under “Contracts and Billing” → Select S3 Contract → Access Credentials → “View Credentials”) to log in. The username is “root”, and use the password you know. You can also find the account ID here.
Create a default group
after successful login, click “Groups” on the left side under “Access Management”.
select “Create Group” option to create a new group.
enter a display name and a unique name for the group.
Here should be a picture
Set rights for the group
In the group settings you can set the permissions for the users in this group. Please note that these permissions apply specifically to the plusserver S3 web interface.
Assign the group the necessary permissions to access the desired actions and resources. Here you can adjust the permissions based on your requirements.
There should be a picture here
Apply group permissions for the S3 interface
We recommend that you select “Ransomware Mitigation” on the left to get started. This section provides a sample ransomware defense policy that can be used as a baseline. It is important to emphasize that this policy is intended as an example only and grants users broad permissions.
In the next step you can add users to this group. However, since we only create the user in step 5, click on “Create group” here.
For more information about each AWS permission, see the official AWS documentation: AWS User and role policy examples.
The sample ransomware defense policy can serve as a starting point to strengthen your security strategy. Remember to assign permissions specifically and check them regularly to ensure the integrity of your data.
There should be a picture here
Create another user
On the left side, under “Access Management”, select “Users”. Here click on “Create user”.
Enter the user’s full name in the appropriate field.
Assign a desired user name that will later be used to log in.
Set a strong password for the user.
Leave the “Deny access” option set to “No”. (This option allows a user’s access to be denied later if necessary.)
Click “Continue” to continue.
On the next input mask you can select the group that you created previously.
Assigning this group automatically grants the user the previously defined permissions you set for this group. To finish, click “Create user”.
There should be a picture here
User login
- Either log in with the newly created user’s credentials or use the root user to edit the user.
Generation of an access key
After you have successfully logged in, you have the option to generate an access key.
An Access Key is a combination of an Access Key ID and a Secret Access Key. You need these credentials to access your resources using the AWS S3 Command Line Interface (CLI) or other compatible tools.
On the left side, under “Storage (S3)”, select “My access keys”.
Now click on the “Create Key” button to create a new access key.
On the first screen you have the option of specifying an end point (expiry time) for the access key. This means that the access key becomes invalid after this time has expired. Alternatively, you can set it to “unlimited” to not limit the validity.
After configuration, the access key and the secret access key will be displayed. The Secret Access Key is only displayed once. We strongly recommend that you save the secret key carefully and protect it from unauthorized access.
Alternatively, you can also use the option to download the access data in CSV format. This allows you to save and manage the access data.