Create IAM Role for InfinStor
InfinStor creates InfinSnap fine grained snapshots of your S3 bucket by storing metadata in a DynamoDB table. InfinSnap is enabled by turning on Versioning of objects for the bucket, and by configuring S3 Events for the bucket. These S3 events are processed by InfinStor's service and the DynamoDB metadata table is updated.
In order to enable InfinSnap for your S3 bucket, you need to create a role in your AWS account that permits the InfinStor service to perform the above actions on your S3 bucket.
The following procedure describes how this role is created and how the InfinStor service is configured.
Sign into the InfinStor service and obtain InfinStor's AWS Account ID and the External ID (shared secret)
InfinStor's service is available at https://service.infinstor.com
Please sign in and note InfinStor's AWS Account ID and the External ID (shared secret)
Step 1: Once signed into the InfinStor service, click on Configuration Step 2: Note InfinStor's AWS Account ID Step 3: Note the External ID (shared secret)
Login to your AWS Account and create an IAM Role for InfinStor
Sign into your AWS Account and go to the IAM console Step 1: Click on Roles Step 2: Click on Create Role
Step 1: For type of trused entity, choose 'Another AWS Account' Step 2: Enter InfinStor's AWS Account ID (one that you got from the InfinStor service) Step 3: Check 'Require External ID' Step 4: Enter the External Id that you got from the InfinStor service
Attach the AmazonS3FullAccess permission
Name your newly created role. Use something indicative such as 'for-infinstor'
Copy the ARN of your newly created role. You will go back to the InfinStor console and save this
Go back to your InfinStor service console, and save the IAM Role's ARN
Back in the InfinStor service console, click on Configuration Enter the ARN of your newly created role and save it