Amazon Glacier

Least Privileged User

Navigate to the AWS console and create an IAM user with programmatic access. The user will need the following permissions. You can create a policy specifically for these permissions and apply the permissions to the user.

For more information, see: High Level AWS Source Configuration

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "VisualEditor0",
      "Effect": "Allow",
      "Action": [
        "glacier:ListJobs",
        "glacier:GetVaultAccessPolicy",
        "glacier:ListMultipartUploads",
        "glacier:DescribeVault",
        "glacier:ListTagsForVault",
        "glacier:GetJobOutput",
        "glacier:GetVaultLock",
        "glacier:GetVaultNotifications",
        "glacier:ListParts",
        "glacier:DescribeJob"
      ],
      "Resource": "arn:aws:glacier:*:*:vaults/*"
    },
    {
      "Sid": "VisualEditor1",
      "Effect": "Allow",
      "Action": [
        "glacier:GetDataRetrievalPolicy",
        "glacier:ListVaults",
        "glacier:ListProvisionedCapacity"
      ],
      "Resource": "*"
    }
  ]
}

Connection Parameters

NameRequired?Description
Region
Access Key IDRequired
Secret Access KeyRequired
Additional ThreadsThe number of additional threads allowed to be utilized during collection.
Request Timeout (seconds)The number of seconds to allow for the API to return a response.

Metrics

Vault

NameDescription
ARNThe Amazon Resource Name (ARN) given to the vault.
NameThe name of the vault.
Number of ArchivesThe number of archives in the vault as of the last inventory date.
RegionThe AWS Region this object belongs to.
Size (Bytes)Total size of the archives in the vault as of the last inventory date.