In this lab, students will work with Amazon Simple Storage Service (S3) to configure two S3 buckets with encryption, versioning, lifecycle rules, and deletion protection.
Successfully complete this lab by achieving the following learning objectives:
- Configure Two S3 Buckets
Configure two S3 buckets. One bucket should start with the name
labdata, and one bucket should start with the name
Both buckets should block public access and accept all default settings upon creation.
- Configure Protection for Accidental Deletion of Data for Both Buckets
Configure the S3 buckets to protect against accidental deletion of data using versioning.
- Configure KMS Encryption for the labdata Bucket
Create a KMS encryption key and apply KMS encryption for the
- Configure Lifecycle Configuration for Both Buckets
Configure lifecycle policies for the S3 buckets. Name the lifecycle rule lifecycle. The lifecycle configuration should move objects to the Glacier Flexible Retrieval storage class after 45 days and should expire objects after 10 years (3,652 days). These lifecycle rules should be applied to all objects in the bucket.