User GuideDocumentationAPI Documentation

S3 Bucket Storage

Locktera’s S3 Integration: Secure Your Containers in Your Own S3 Bucket

Locktera’s integration with Amazon S3 allows you to securely store Locktera-generated containers in your own S3 bucket, giving you full control over your data storage while maintaining the highest level of encryption. Containers are encrypted on your device before reaching your S3 bucket, ensuring your sensitive data stays completely protected and under your control.

Key Benefits of Using Locktera with Your Own S3 Bucket:

  • Full Control: You maintain complete ownership and control over your encrypted containers within your private S3 environment, ensuring that only authorized parties can access your data.

  • Encrypted Containers: Locktera securely encrypts your data into containers before it leaves your device, protecting your information from unauthorized access, both in transit and at rest.

  • End-to-End Encryption: Your data is encrypted on the client side before being transmitted to S3, ensuring that neither Locktera nor Amazon can view or modify the contents of your containers.

  • Compliance & Flexibility: Using your S3 bucket for encrypted container storage helps you stay compliant with regulatory requirements while leveraging the flexibility and scalability of Amazon’s cloud infrastructure.

How It Works:

  1. Encrypt Your Data: Locktera encrypts your data into secure containers directly on your device.

  2. Store in S3: The encrypted containers are then securely uploaded to your S3 bucket, where you retain full control over storage and access permissions.

  3. Access with Decryption: Only authorized users with the appropriate decryption keys can access and decrypt the data stored in your S3 bucket.

By integrating Locktera with your Amazon S3 storage, you gain end-to-end encryption alongside the flexibility of managing your own cloud storage environment, ensuring that your sensitive data remains safe, secure, and entirely under your control.

Locktera S3 Bucket Integration DocumentationCopied!

Locktera offers seamless integration with Amazon Web Services (AWS) S3 buckets, allowing organizations to securely store and manage their files in a private cloud environment. By connecting Locktera to an S3 bucket, users can manage files, enforce access controls, and leverage Locktera's advanced encryption features for their stored data. This guide covers the steps required to set up and use the S3 integration within Locktera.

Key Features of S3 Integration with Locktera:

  • Secure Storage: Files are securely stored in your private AWS S3 bucket, with full control over access and management.

  • Encryption: Files are encrypted during both upload and storage using Locktera’s encryption protocols, ensuring compliance with data security policies.

  • Access Control: Control access to files stored in your S3 bucket through Locktera’s role-based permissions.

  • Seamless File Management: Use Locktera’s interface to upload, view, share, and manage files directly in the connected S3 bucket.

  • Scalability: Benefit from AWS S3’s scalability for storing and accessing large volumes of data, integrated with Locktera’s security and management tools.

Prerequisites

Before integrating Locktera with an S3 bucket, ensure that:

  1. An AWS S3 bucket has been created and is properly configured.

  2. You have access to your AWS Access Key and Secret Key.

  3. You have sufficient administrative privileges in Locktera to configure private storage settings.

  4. IAM Policies are configured in AWS to allow Locktera to manage files in the S3 bucket.

Setting Up Locktera with S3 Bucket Integration

Step 1: Configure AWS IAM Permissions

To allow Locktera to access your S3 bucket, an IAM user or role must be configured in AWS with the appropriate permissions. Follow these steps:

  1. Create an IAM User or Role in AWS and attach the necessary policies.

Use the following policy to grant access to your S3 bucket:
json
CopyEdit
{

  "Version": "2012-10-17",

  "Statement": [

    {

      "Effect": "Allow",

      "Action": [

        "s3:ListBucket",

        "s3:GetObject",

        "s3:PutObject",

        "s3:DeleteObject"

      ],

      "Resource": [

        "arn:aws:s3:::YOUR_BUCKET_NAME",

        "arn:aws:s3:::YOUR_BUCKET_NAME/*"

      ]

    }

  ]

}

  1. Replace YOUR_BUCKET_NAME with the name of your S3 bucket. This policy grants Locktera permission to list, retrieve, upload, and delete objects within the specified S3 bucket.

  2. Save the Access Key and Secret Access Key of your IAM user. These will be required to configure the integration in Locktera.

Step 2: Configure Locktera for S3 Integration

Once the IAM user and policies are configured in AWS, follow these steps to set up Locktera to integrate with your S3 bucket:

  1. Log in to Locktera with an administrative account.

  2. Navigate to the Cloud Storage section within the Settings menu.

  3. Select Configure Private Storage and choose Amazon S3 from the list of storage providers.

  4. Enter the following details:

    • Bucket Name: The name of your S3 bucket.

    • AWS Access Key ID: The Access Key for the IAM user you created in AWS.

    • AWS Secret Access Key: The Secret Access Key for the IAM user.

    • Region: The AWS region where your S3 bucket is hosted (e.g., us-west-1).

  5. (Optional) Specify a subfolder within the S3 bucket if you wish to segregate Locktera-managed files into a specific folder.

  6. Test the Connection to ensure that Locktera can access your S3 bucket. If the connection is successful, you will receive a confirmation message.

  7. Save your configuration settings. Your Locktera instance is now connected to the specified S3 bucket for file storage.

Managing Files in the S3 Bucket

Once the S3 integration is set up, Locktera will automatically use the configured S3 bucket to store files uploaded via the platform.

1. Uploading Files

  • When uploading files in Locktera, they will be securely transmitted to and stored in the connected S3 bucket.

  • Files are encrypted by Locktera before being uploaded to the S3 bucket, ensuring data security.

2. Viewing and Managing Files

  • Users with the necessary permissions can browse and manage files stored in the S3 bucket through the Locktera interface.

  • You can view, share, or delete files directly from the Locktera dashboard, and any changes will be reflected in the S3 bucket.

3. Access Permissions

  • File access is controlled through Locktera’s role-based permissions. Users can only view or manage files if they have the appropriate roles and permissions within Locktera.

  • External users accessing shared files are subject to the same security and access rules as internal users.

Security and Compliance

Locktera ensures that all data stored in your private S3 bucket complies with your organization's security and compliance requirements.

  • End-to-End Encryption: Files are encrypted using AES-256 encryption before being uploaded to the S3 bucket, ensuring data protection during transmission and storage.

  • Role-Based Access Control (RBAC): Access to files is strictly controlled by Locktera’s RBAC system, ensuring that only authorized users can access or manage specific files.

  • Audit Logging: All file actions, such as uploads, downloads, and deletions, are logged in Locktera’s audit logs, providing full traceability for compliance purposes.

  • Data Residency: By using your organization’s own AWS S3 bucket, you maintain full control over data residency and compliance with local regulations.

Troubleshooting

1. Failed to Connect to S3 Bucket

  • Ensure that the Access Key and Secret Access Key provided in Locktera are correct.

  • Confirm that the S3 bucket name is correct and the IAM user has the appropriate permissions.

  • Verify that your AWS region is correctly configured in the Locktera settings.

2. File Upload or Access Issues

  • Check the IAM permissions to ensure that the Locktera application has the correct permissions to upload, download, and delete files in the S3 bucket.

  • Confirm that the S3 bucket has sufficient storage space and that the file size does not exceed AWS S3 limits.

3. File Encryption Issues

  • Locktera automatically encrypts files before uploading to S3. If there are issues accessing encrypted files, check that the correct encryption settings are configured within Locktera.

FAQs

Q1: Can I use multiple S3 buckets with Locktera?

A: Currently, Locktera allows integration with a single S3 bucket per organization. If you need to use multiple S3 buckets, consider setting up separate Locktera instances or managing permissions within your S3 bucket.

Q2: How does Locktera handle file versioning with S3?

A: Locktera does not directly support S3 versioning. If you need versioning, you can enable S3’s native versioning functionality in AWS and manage file versions within the S3 bucket.

Q3: Are files automatically deleted from S3 when deleted in Locktera?

A: Yes, when a file is deleted in Locktera, the corresponding file in the S3 bucket is also deleted. This ensures that storage remains synchronized.

Support

For additional help with configuring or using the S3 integration, contact Locktera’s support team or refer to the AWS S3 documentation for further details on managing your S3 bucket.

By integrating Locktera with AWS S3, organizations can leverage the scalability and flexibility of private cloud storage while maintaining the highest levels of security and control over their data.