You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/connections/data-residency.md
+3-5Lines changed: 3 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -42,7 +42,7 @@ Local Data Storage allows you to preserve your raw events in Amazon S3 buckets h
42
42
43
43
To begin with Local Data Storage, complete the following steps in your AWS account:
44
44
45
-
1. Create an S3 bucket in the preferred region
45
+
1. Create an S3 bucket in your preferred region
46
46
2. Create a folder named `segment-logs` in the new bucket
47
47
3. Edit the bucket policy to allow Segment access to the S3 bucket
48
48
```json
@@ -64,7 +64,7 @@ To begin with Local Data Storage, complete the following steps in your AWS accou
64
64
```
65
65
**Note**: `Resource` property string must end with `/*`.
66
66
67
-
Segment requires this access to write raw data to your regionally hosted S3 bucket. Specifically, this allows Segment to use `s3:PutObject`. To enable encryption at rest, use the default S3 mechanism. If you have server-side encryption enabled with AWS KMS managed keys, see the additional [required configuration step](/docs/connections/storage/catalog/amazon-s3/#encryption). To edit the bucket policy, right-click the bucket name in the AWS management console, and select **Edit policy**.
67
+
Segment requires this access to write raw data to your regionally hosted S3 bucket. Specifically, this allows Segment (as the Segment S3-copy user) to use `s3:PutObject`. To enable encryption at rest, use the default S3 mechanism. If you have server-side encryption enabled with AWS KMS managed keys, see the additional [required configuration step](/docs/connections/storage/catalog/amazon-s3/#encryption). To edit the bucket policy, right-click the bucket name in the AWS management console, and select **Edit policy**.
68
68
69
69
4. Create a new IAM role in your AWS account with a trust relationship to the role which allows Segment to use the Segment `workspace_id` as `externalID`.
70
70
```json
@@ -101,7 +101,6 @@ To begin with Local Data Storage, complete the following steps in your AWS accou
101
101
"Effect": "Allow",
102
102
"Action": "s3:ListBucket",
103
103
"Resource": [
104
-
"arn:aws:s3:::YOUR_BUCKET_NAME/*",
105
104
"arn:aws:s3:::YOUR_BUCKET_NAME"
106
105
]
107
106
},
@@ -111,7 +110,6 @@ To begin with Local Data Storage, complete the following steps in your AWS accou
111
110
"Action": "s3:*Object*",
112
111
"Resource": [
113
112
"arn:aws:s3:::YOUR_BUCKET_NAME/*",
114
-
"arn:aws:s3:::YOUR_BUCKET_NAME"
115
113
]
116
114
}
117
115
]
@@ -139,7 +137,7 @@ To begin with Local Data Storage, complete the following steps in your AWS accou
139
137
140
138
### Local Data Storage configuration
141
139
142
-
After you configure the policy and roles, as defined above, navigate to the Settings tab of the source for which you want to store data regionally, and find the Local Data Storage section.
140
+
After you configure the policy and roles, as defined above, navigate to the Regional Settings tab of the Settings page of the source for which you want to store data regionally, and find the Local Data Storage section.
0 commit comments