USING HYPERSTORE WITH OBJECT LOCK 4
Enabling Object Lock on a bucket as the bucket is created does not by itself have the effect of locking
objects that are subsequently stored in that bucket. It only makes it possible to lock such objects, using the
methods described as follows.
1. For an Object Lock enabled bucket, optionally set a bucket default Object Lock configuration that
will apply to all objects that are subsequently created in the bucket. The default Object Lock
configuration specifies a Retention time period that will be applied to objects that are subsequently
created in the bucket. Each object's retention period starts when the object is created in the bucket
(and for objects with multiple versions, each object version's retention period starts when that
object version is created). The default Object Lock configuration also specifies which of two modes
the Object Lock is implemented in:
• Governance mode, which allows privileged users to change the retention period or
delete objects before their retention period completes.
• Compliance mode, which does not allow any user to change the retention period
or delete objects before their retention period completes.
2. For an Object Lock enabled bucket, optionally set Object Lock attributes on individual objects,
either as the objects are created in the bucket or after the objects have been created in the bucket.
The Object Lock set on an object can be either or both of:
• Retention, in Governance mode or Compliance mode
• Legal Hold, which applies for an indefinite period until explicitly released. While
objects are in Legal Hold, no user can delete them.
These per-object Object Lock attributes override the bucket's default Object Lock configuration, if a default
configuration has been set.
Please note that as of the 7.2 release, all users must use a third party S3 client application that
supports the standard S3 APIs pertaining to object locking. In the current HyperStore release, the CMC
does not support setting up object locking on buckets or objects. It is also not possible to use the HSH to
create Object Lock enabled buckets or manage Object Lock bucket policies at the command line. This
guide will demonstrate how to create and configure bucket level Object Lock capabilities using the third-
party AWS CLI product supplied by Amazon. Please note that not all third-party S3 applications support
the Object Lock feature at this time so be sure to choose an application that does.
ENABLING OBJECT LOCK IN HYPERSTORE
This section will briefly describe how to enable Object Lock within HyperStore. If more information is
needed, all of the details to enable Object Lock within HyperStore can be found in the online user guide by
logging in as the default admin user and clicking on Help as illustrated below.
To Next Page