You can add a secondary cloud storage credential, which can be used by clients that have the Storage Accelerator package, to access the cloud library mount path. You can use the secondary credential to prevent clients that have the Storage Accelerator package from gaining full access to the cloud storage library by creating the secondary credential with only read and write permissions to the mount path. (Delete permission can be omitted for the Storage Accelerator.) Also, when you set up the MediaAgent with a secure access role (such as AWS IAM role) to access the cloud storage library, you can create this secondary access credential for clients that have the Storage Accelerator package.
Before You Begin
-
Create the secondary credential for the appropriate cloud storage account that must used by the Storage Accelerator.
For information about how to create a secondary credential for the storage account, refer the documentation associated with the appropriate Cloud Storage vendor.
-
Add the secondary credentials to the Credential Manager.
For more information about adding credentials, see Adding a Credential to Credential Manager.
Procedure
-
From the CommCell Browser, navigate to Storage Resources | Libraries | <Cloud Storage Library>.
-
Right-click the mount path, and click Properties.
-
From the Advanced tab, from the Storage Accelerator Credentials list, select the secondary credential created in the Credential Manager.
Optionally, from the Storage Accelerator Credentials list, click the Create New button to create the secondary credential, if it is already not created using the Credential Manager.
-
Click OK.
Result
All clients with the storage Accelerator package using the specific mount path will use this secondary credential to access the cloud storage library.