In this lab, students will work with Amazon Simple Storage Service (S3) to configure two S3 buckets with encryption, versioning, lifecycle rules, and deletion protection.
Successfully complete this lab by achieving the following learning objectives:
- Configure 2 S3 Buckets
Configure 2 S3 buckets. 1 bucket should start with the name
labdata, and 1 bucket should start with the name
1 bucket is for the data, and 1 bucket is for the logs.
Both buckets should block public access.
- Configure KMS Encryption for the Labdata Bucket
Configure KMS encryption for the
labdatabucket using a KMS key you create.
- Configure Protection for Accidental Deletion of Data for Both Buckets
Configure the S3 buckets to protect against accidental deletion of data.
- Configure Lifecycle Configuration for Both Buckets
Configure Lifecycle policies for the S3 buckets. Name the Lifecycle "lablifecycle". Below are the requirements identified by our fictional company.
After 45 days, the files will be accessed infrequently.
All current files should be retrievable and accessible within 24 hours in the event of an audit.
After 10 years (3,652 days), objects in the bucket should be deleted.