ADMINISTERING
Before you enable DAOS tier 2 storage, configure a Domino® credential store to store the credentials that are used for connections to the storage service.
About this task
Starting in Domino 12, you can also use the credential store to store shared keys that are used to encrypt attachment objects. If you use tier 2 storage, attachment objects encrypted with a shared key resolve to a single object in tier 2 that all participating servers share. For more information, see Using a shared key to encrypt DAOS objects across servers.
Procedure
1. Refer to your storage service vendor documentation. Create credentials for Domino to use to connect to the storage service. (Your storage service may do this step for you).
2. Refer to your storage service vendor documentation. Create a bucket for Domino to use. (Your storage service may do this step for you). Multiple Domino servers can use the same bucket. You can use any name for a bucket. The following AWS command example creates a bucket named aws-hcl-dominocos at the endpointus-east-1:
The name in brackets[dominocos] is used as the name of the credential in the credential store. You specify this name when you complete the procedure Enabling DAOS tier 2 storageAfter you configure the credential store, enable DAOS tier 2 storage on Domino servers. Follow the procedure that corresponds to your storage service..
where<filename> is the name of the text file with the credentials.
For example:
tell daosmgr S3 storecred dominocred.txt
The credentials are added to the credential store with the named credential, for example,dominocos. The text file is deleted when the command completes. No credentials are visible at the console or in log files.
Enable DAOS tier 2 storage