Amazon Glacier

Least Privileged User

Navigate to the AWS console and create an IAM user with programmatic access. The user will need the following permissions. You can create a policy specifically for these permissions and apply the permissions to the user.

For more information, see: High Level AWS Source Configuration

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "VisualEditor0",
      "Effect": "Allow",
      "Action": [
        "glacier:ListJobs",
        "glacier:GetVaultAccessPolicy",
        "glacier:ListMultipartUploads",
        "glacier:DescribeVault",
        "glacier:ListTagsForVault",
        "glacier:GetJobOutput",
        "glacier:GetVaultLock",
        "glacier:GetVaultNotifications",
        "glacier:ListParts",
        "glacier:DescribeJob"
      ],
      "Resource": "arn:aws:glacier:*:*:vaults/*"
    },
    {
      "Sid": "VisualEditor1",
      "Effect": "Allow",
      "Action": [
        "glacier:GetDataRetrievalPolicy",
        "glacier:ListVaults",
        "glacier:ListProvisionedCapacity"
      ],
      "Resource": "*"
    }
  ]
}

Connection Parameters

Name

Required?

Description

Region

Access Key ID

Required

Secret Access Key

Required

Additional Threads

The number of additional threads allowed to be utilized during collection.

Request Timeout (seconds)

The number of seconds to allow for the API to return a response.


Metrics

Vault

Name

Description

ARN

The Amazon Resource Name (ARN) given to the vault.

Name

The name of the vault.

Number of Archives

The number of archives in the vault as of the last inventory date.

Region

The AWS Region this object belongs to.

Size (Bytes)

Total size of the archives in the vault as of the last inventory date.