Amazon Web Services
Connecting your Lab Atlas instance with S3
Last updated
Connecting your Lab Atlas instance with S3
Last updated
The Amazon Web Services (AWS) Simple Storage Service (S3) is a powerful cloud storage system that is great for collecting & processing data, but not great for sharing with colleagues in a user-friendly way. Lab Atlas helps bring this service to a wider audience within your organization by allowing you to attach S3 buckets as storage drives and use them for project storage & shared storage folders.
Lab Atlas accesses AWS through the official Java SDK libraries and can authenticate & authorize access to your environment using IAM user access keys. The most secure way to grant access to Lab Atlas is to create a dedicated IAM user, attach the minimum required permissions, and issue an access key.
Log into the AWS console and navigate to the IAM dashboard.
Select 'Users' from the Access Management menu and then click 'Create user'.
On the next screen, provide a descriptive name for the user. Do not check the box to grant AWS console access. Click 'Next'.
On the next screen, select 'Attach policies directly'. Click 'Create policy'.
A new window will open for creating a new IAM policy. Select the JSON format option and then past the content of the code block below into the policy editor. Change the bucket names to match the buckets you'd like to access in Lab Atlas.
Create a name for the policy, provide a description, and save the policy.
Go back to the user creation window and refresh the list of available policies. Search for the policy you created by name and select it. Click 'Next'. On the next screen, add any tags appropriate for your organization, then click 'Create user'.
Back on the IAM user list page, search for and select your new user. In the user summary view at the top of the next page, click 'Create access key'.
On the next screen, you will be presented with a list of use-cases for your key (and recommendations for alternatives). Select 'Third party', then click 'I understand...' at the bottom of the page. Click 'Next'. Optionally provide a key description and then click 'Create access key'.
On the next screen, copy and save the Access Key and Secret Access Key values in a safe place.
Once you have an access key created that is associated with an IAM user with appropriate privileges, you can register the integration in Lab Atlas.
Open Lab Atlas and go to the Admin Dashboard. In the Settings menu, select Integrations and then Amazon Web Services.
Click the 'Register Integration' button.
In the pop-up window, provide the required information:
A display name for the integration.
Your AWS account number (optional).
The AWS region for the account.
The access key ID and secret access key you created for the integration.
After clicking 'Submit', Lab Atlas will test the credentials you provided. If access is granted, the window will close and the integration registration details will be displayed.
Once you have connected Lab Atlas to your AWS account, you can add S3 Buckets in the same Admin Dashboard window.
Click the 'Add S3 Bucket' button and a popup will appear:
Select a bucket from the list of available buckets. Keep in mind: the IAM policy that grants access to AWS might not allow read/write access to all of the buckets in this list. Provide a display name and the root path you want like to grant access to, and then click 'Submit'.
The new bucket should now appear in the list of connected buckets in the AWS integration settings screen. You can now use this bucket for project storage or creating shared folders.
