AWS S3 Streaming Configuration

This document provides information on configuring an AWS S3 connection with real-time event monitoring and data streaming.

PreviousAzure AD Streaming Configuration NextGoogle Drive Streaming Configuration

Last updated 1 month ago

Was this helpful?

AWS S3 Streaming Configuration

This document provides information on configuring an AWS S3 connection with real-time event monitoring and data streaming.

To enable DDR (Streaming) for an existing AWS S3 scan, follow these steps:

Prerequisites

Existing AWS S3 connection:

An AWS S3 scan configuration must already exist.

If an AWS S3 scan has not been configured yet, follow this guide to and ensure the necessary credentials are set up.

Extend AWS S3 policy permissions to allow data streaming:

Require a separate set of permissions for AWS SNS service:

{
	"Version": "2012-10-17",
	"Statement": [
		{
			"Sid": "SNSScoped",
			"Effect": "Allow",
			"Action": [
				"sns:CreateTopic",
				"sns:DeleteTopic",
				"sns:TagResource",
				"sns:SetTopicAttributes",
				"sns:Subscribe",
				"sns:ConfirmSubscription"
			],
			"Resource": [
				"arn:aws:sns:*:876326936841:s3-event-topic-*"
			]
		},
		{
			"Sid": "S3BucketNatification",
			"Effect": "Allow",
			"Action": [
				"s3:PutBucketNotification"
			],
			"Resource": "*"
		}
	]
}

Steps to Enable Data Streaming

1. Select an Existing Scan Configuration

Go to the Scan Configurations page in the product UI.
Select AWS S3 and create credentials for AWS S3
Find the AWS S3 scan configuration and select Edit Configuration from the options menu.

To validate that streaming events coming though the system you may check Administration -> Live Events -> Streaming

PreviousAzure AD Streaming Configuration NextGoogle Drive Streaming Configuration

Last updated 1 month ago

Was this helpful?