How to connect to Amazon S3 GovCloud (US)
AWS GovCloud (US) is an isolated AWS Region designed
to allow US government agencies and customers to move sensitive workloads
into the cloud by addressing their specific regulatory and compliance requirements.
The following GovCloud regions are supported for now:
-
Amazon S3 GovCloud Storage (FIPS-140-2)
Endpoint: s3-fips-us-gov-west-1.amazonaws.com
(uses FIPS 140-2 validated cryptographic modules to support compliance with FIPS 140-2)
-
Amazon S3 GovCloud Storage
Endpoint: s3-us-gov-west-1.amazonaws.com
(non-FIPS alternative for Amazon S3)
With S3 Browser you can easily start working with Amazon S3 GovCloud region.
To connect to GovCloud Region:
Please note: to start working with GovCloud Region you need to
contact AWS GovCloud (US) Region business representative
and go through approval process.
1. Start S3 Browser and click Accounts -> Add New Account.
Click Accounts, Add New Account or use the Ctrl+Shift+N keyboard shortcut
Add New Account dialog will appear:
Add New Amazon S3 GovCloud Account dialog.
2. Choose the Account Type:
-
Amazon S3 GovCloud Storage (FIPS-140-2) if you need compliance with FIPS 140-2.
-
Amazon S3 GovCloud Storage for non-FIPS alternative.
3. Specify your Access Key Id and Secret Access Key
4. Turn on Encrypt Access Keys with a password if you would like to protect your Access Keys with a master password
5. Click Add new account
You can now choose the newly added account from the Accounts menu:
Click Accounts, Account Name to switch between accounts or use the Ctrl+Shift+[number] keyboard shortcut
Advanced Account Settings
You may also configure additional settings when adding new or editing existing account.
In order to open advanced account settings, please click the advanced settings link
located at the bottom left corner of the dialog.
The Advanced Account Settings dialog will open:
Advanced account settings
You may configure the following settings here:
List all my buckets when account assigned - if checked, S3 Browser performs s3:ListAllMyBuckets
call when account is assigned. You may uncheck this for accounts that are not allowed to list all buckets
to avoid failed tasks and warnings in the log.
Check CloudFront distributions when account assigned - if checked, S3 Browser performs cloudfront:ListDistributions
call when account is assigned to set special icon for buckets that are used as origin for CloudFront distributions.
You may uncheck this for accounts that are not allowed to list CloudFront distributions to avoid failed tasks and warnings in the log.
External Buckets - you may edit external buckets associated with the account. Each bucket must be specified on a new line.
Optional path is also supported, slash is used as delimiter, for example my-bucket/and/optional/path
|