Customer S3 replication setup

Describes how to set up replication rules to our CCA-Importer S3 buckets, dev,stage and prod.

1 - Create an IAM Role

Create an IAM role with name [example-org]-publisher-replication that S3 can assume. The images below tries to guide how to do this.

Note: the NavigaID organisation name is given to you by Naviga.

Make sure to fill in Trusted entity type and Use case as in figure 1.

In the next step "Add permissions" click "next"

Name, review, and create

Add the role name [example-org]-publisher-replication.

Press button "Create role"

2 - Open the created role and copy the arn for the role

3 - Send the copied arn to your Naviga contact

The copied arn for the created role should be sent to your Naviga contact.

Naviga will setup the necessary permissions to the destination buckets. When this is done the replication rules can be added tou your bucket.

When Naviga has adde the arn to the buckets continue with setps below.

4 - Create replication rule

Open the management settings for the bucket and press "create replication rule"

enable bucket versioning if needed give the rule a name

add prefix which should be your naviga-id organisation name followed by slash (/)

Set destination specify bucket in another account set account id and bucket name check Change object ownership to destination bucket owner

Iam role Choose from existing IAM roles select the previously created iam role

Two replication rules needs to created one for prod and another for stage

prod :

Account ID : 821876319861

Bucket name: wireingest-filearea-f1uem03ipxzd

stage:

Account ID : 161383246049

Bucket name: wireingest-filearea-1x1v8ekfnrc4z

The following images shows how to do this in AWS console.

Last updated