Forums

Home / Forums

You need to log in to create posts and topics. Login · Register

S3 user management


godfather007
4 Posts
April 15, 2026, 9:52 am

Hello dear Petasan suers,

i'm new to the product but familiar with ceph (through proxmox).

For a test i've setup an environment for the S3 feature.

Is it possible to manage/set ACL's on a bucket with a client, let's say S3 browser, which i bought for this purpose.

Can it be done with a user realm like a joined ADS/Hybrid-Azure using LDAP or OIDC?

I could not get much info regarding this in the documentation.

 

 

Thanks in advance,

Martijn

Last edited on April 15, 2026, 10:37 am by godfather007 · #1

admin
3,073 Posts
April 23, 2026, 9:17 am

The following are supported:

bucket policy
https://docs.ceph.com/en/latest/radosgw/bucketpolicy/

S3 Browser policies
https://s3browser.com/working-with-amazon-s3-bucket-policies.aspx

bucket ACL
https://docs.ceph.com/en/latest/radosgw/s3/authentication/

Last edited on April 23, 2026, 9:18 am by admin · #2

godfather007
4 Posts
April 28, 2026, 10:24 am

Thanks for your info.

It doesn't look as easy as i've hoped. Setting an ACL as easy as reading contents from a local LDAP server.

 

Do you know if it could also be done using Azure ARN's?  https://docs.ceph.com/en/reef/radosgw/oidc/

 

Thx for your time

 

 

 

***** edit*****

Reading about this tells me to go the 'bucket policies' route.

Guess i'm old-school and holding on to legacy technologies as LDAP and ACL...

Last edited on April 28, 2026, 11:30 am by godfather007 · #3

admin
3,073 Posts
May 1, 2026, 7:10 pm

S3 security is from on Amazon AWS, complicated but flexible.

Yes bucket policies is the way to go.

#4