Skip to main content
Version: 723.SP03

IBM Cloud Object Storage

Integrate IBM Cloud Object Storage with Cxlink Suite for Documents and Archive to benefit from IBM features.

With built-in encryption, multi-region support, and seamless integration with the powerful IBM Cloud ecosystem. Flexibile storage tiers help to optimize your costs and Role based policies and access permissions help secure data access through encryption key management.

Topics

Prerequisites

If you don't have an IBM Cloud subscription, create a IBM Cloud account or IBM Cloud free tier before you begin.

For more official information: Creating an account

Create an Object Storage Instance

If you do not currently have an Object Storage resource in place, you will need to create one. To create a new resource you can use this link: Create an Object Storage or can navigate to the dashboard and click the Create resource button.

In the catalog section, select a service or search for Object Storage:

Create Object Storage 1

Please specify the infrastructure, pricing plan, service name and resource group, and click the Create button:

Create Object Storage 2

For more official information: Creating a service instance

Create a new Bucket

To create a bucket in the Cloud Object Storage Instance, follow these steps:

  1. Navigate to your new Cloud Object Storage Instance in the IBM Cloud portal.
  2. In the bucket section, select the Create bucket + button.
  3. Select the option Create a Custom Bucket and click in Create button.
  4. Define a unique bucket name and chouse the specific configuration according to your preferences including resiliency, location, storage class, object versioning, immutability and advanced configurations.
  5. Click the Create bucket button.
  6. Note down the container name for further configuration. Create Container

For more official information: Create a Bucket to store your data

Credentials

Service credentials are always associated with a Service ID. In general IAM API Keys are the preferred method of authentication for IBM Cloud® Object Storage. HMAC is supported primarily for compatibility with an earlier version with applications which migrated from IaaS Object Storage and legacy S3 applications. IAM is also natively supported when developing applications with the COS SDKs. Token expiration and refresh are handled automatically to simplify the process.

Further official information can be found at the following link: https://cloud.ibm.com/docs/cloud-object-storage?topic=cloud-object-storage-service-credentials

Generate Credentials

Login to the IBM Cloud console and navigate to your instance of Object Storage.

  1. In the menú navigation, click in Service Credentials.
  2. Click New credential.
  3. Enter a credential name.
  4. When creating a service credential, it is possible to provide a value of None for the role. This will prevent the creation of unintended or unnecessary IAM access policies. Any access policies for the associated service ID will need to be managed using the IAM console or APIs.
  5. If you want to generate HMAC credentials, switch the Include HMAC Credential to On. Verify the option is switched to On before continuing.
  6. Click Add to generate service credential.

For more information about IAM visit - Getting started with IAM

For more information about HMAC visit - Using HMAC Credentials

IBM_Create_Credentials

The credential will generate the following information:


_13
{
_13
"apikey": "bvNgfHGHFDhfd-ghfghtgvcbFhdf_BrtGOiGHgfbEFkuN",
_13
"cos_hmac_keys": {
_13
"access_key_id": "g65h4fg6h4g65fh45g6f4h6gf65gf4h6f40cf",
_13
"secret_access_key": "65nh1j65hg15hg132b16mb1n65m1bh6n5m1h65d"
_13
},
_13
"endpoints": "https://control.cloud-object-storage.cloud.ibm.com/v2/endpoints",
_13
"iam_apikey_description": "Auto-generated for key crn:v1:bluemix:public:cloud-object-storage:global:a/c4kj5n3435l435mb678271:2kl21bfd95f-584e-4951-9fc2-ab64814c0230:resource-key:h2gj1gh5-44be-45ca-b1f6-agh52j14hg65j4cf",
_13
"iam_apikey_id": "ApiKey-n21md65xm-21ce-4ef9-9500-c589150d64a4",
_13
"iam_apikey_name": "CRED_HMAC",
_13
"iam_serviceid_crn": "crn:v1:bluemix:public:iam-identity::a/c5b1ghnbm54g65vbhg1k5u5271::serviceid:ServiceId-c3bbc13b-864e-4797-b5f9-466dc945fea9",
_13
"resource_instance_id": "crn:v1:bluemix:public:cloud-object-storage:global:a/c5b1ghnbm54g65vbhg1k5u527:246fd95f-584e-4951-9fc2-gfh54gf6j4g6h5230::"
_13
}

Please retain the following credentials for future reference: API key, access_key_id and secret_access_key. The following steps will require you to provide the relevant information, dependent on the type of credential you select.