Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
You can use Azure NetApp Files' object REST API with an S3-compatible client, taking advantage of secure SSL communication and seamless data management.
You must install a certificate on your machine before accessing the bucket with S3-compatible clients. This document covers accessing the bucket with the S3 Browser and AWS CLI.
Install the certificate in the Trusted Root Certification Authorities
Before accessing your object REST API-enabled volume with an S3-compatible client, you must install the certificate.
- Open the Edge browser on your client system and navigate to your bucket's URL:
https://<your-bucket-endpoint-IP-or-FQDN>. - Select the lock icon in the address bar then select Certificate (Valid).
- In the certificate dialog, select the Details tab then Copy to file (or Export). Follow the steps in the export wizard, ensuring you choose the DER encoded binary X.509 (.CER) format. Save the .CER file to your local machine.
- To install the certificate, select the .CER file on your local machine.
- In the Certificate window, select Install Certificate. In the installation wizard, choose Local machine as your installation destination. Note that this requires administrator privileges. In the Certificate Store screen, select Place all certificates in the following store then Browse and choose Trusted Root Certification Authorities.
- When you complete the steps in the installation wizard, a dialog confirms the certificate was installed successfully.
Access files with S3 Browser
Download and install S3 Browser.
Add a new account for S3-compatible storage. When adding the new account, follow these guidelines:
- REST Endpoint: Enter the endpoint URL for your volume:
https://<your-bucket-endpoint-IP-or-FQDN>. - Access Key ID: Use the access key created when you generated the bucket on the NFS volume.
- Secret access key: Use corresponding secret key from when you generated the bucket.
- Select Encrypt Access Keys with a Password and Use secure transfer (SSL/TLS).
- REST Endpoint: Enter the endpoint URL for your volume:
After adding the account, verify the connection. In the S3 Browser, select your newly added account in the Accounts menu. If the connection was successful, you see your buckets and can manage the objects.
Access files with the AWS CLI
- Download the AWS CLI:
- For Windows, download the Microsoft Software Installer and run it.
- For Linux, install the AWS CLI with CURL:
curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip" unzip awscliv2.zip sudo ./aws/install - Verify the installation succeeded with the command
aws --version. The expected output is:aws-cli/2.x.x Python/3.x.x Linux/… - Configure the AWS CLI with the command
aws configure. When prompted, provide:- AWS access key ID - Use the access key created when you generated the bucket on the NFS volume.
- AWS secret access key - The corresponding secret key from when you generated the bucket.
- Default region name: us-east-1
- Output: JSON
Note
When using AWS CLI with Azure NetApp Files buckets, always use us-east-1 as the default region name.
- List the buckets:
aws s3 ls --endpoint-url https://<your-bucket-endpoint-IP-or-FQDN> --no-verify-ssl - List the objects in a bucket:
aws s3 ls --endpoint-url https://<your-bucket-endpoint-IP-or-FQDN>(https://<your-bucket-endpoint-IP-or-FQDN>) s3://<bucket-name>/ --no-verify-ssl - Copy an object from a bucket to your local workstation:
aws s3 cp --endpoint-url https://<your-bucket-endpoint-IP-or-FQDN> s3://<bucket-name>/<object-name> ./<local-object-name> --no-verify-ssl