hands-on lab

Handling S3 Objects Events With Lifecycle Policies and Server Access Logging

Intermediate
1h
4,098
4.7/5
Get guided in a real environmentPractice with a step-by-step scenario in a real, provisioned environment.
Learn and validateUse validations to check your solutions every step of the way.
See resultsTrack your knowledge and monitor your progress.
Lab description

If you are a solutions architect, one of the most required things is to design and deploy efficient, cost-effective, and highly available storage solutions in the cloud. Then, if you are working on a storage solution that needs to better handle the objects, you should consider handling them automatically. For that reason, AWS allowed users to implement the Lifecycle Policies on the S3 buckets. As the name suggests, a lifecycle policy allows you to specify actions to perform on objects based on their lifecycle. You can implement various actions such as deleting them after a certain period of time, moving them between storage classes to implement a cost-effective solution, deleting incompleted multipart uploads.

To have a fully monitored storage solution, you can decide to implement server access logging. That means that each operation performed on a single bucket or object will be logged into another bucket. One of the most important things to remember is to not choose the origin bucket as the target bucket for logging; that would create an infinite recursive iteration and it could cost you a lot of money.

In this lab, you will create an S3 bucket where you will implement lifecycle policies, and you will create a second S3 bucket that will be used as the server access logging target for all the operations performed on the first one.

Lab Objectives

Upon completion of this Lab you will be able to:

  • Setting up lifecycle policies for your S3 buckets
  • Creating a server access logging S3 solution

Intended Audience

This lab is intended for:

  • AWS Solutions Architect Associate exam candidates
  • Cloud architects that need to design and deploy an object managed solution on S3
  • Anyone curious about how objects can be automatically handled

Prerequisites

To get the most from this lab, you should be familiar with S3. You can follow these labs:

Updates

October 31st, 2023 - Updated screenshots to reflect the latest UI

October 18th, 2022 - improved explanation around how access is granted in the log delivery target bucket

December 30th, 2021 - Updated screenshots and instructions to reflect the latest UI

Environment before
Environment after
About the author
Avatar
Stefano Cascavilla
Junior Data Engineer
Students
39,686
Labs
106
Courses
2
Learning paths
10

Stefano studies Computer Science and is passionate about technology. He loves working with Cloud services and learning all the best practices for them. Google Cloud Platform and Amazon Web Services are the cloud providers he prefers. He is a Google Cloud Certified Associate Cloud Engineer. Node.js is the programming language he always uses to code. When he's not involved in studying or working, Stefano loves riding his motorbike and exploring new places.

Covered topics
Lab steps
Logging In to the Amazon Web Services Console
Creating an Amazon S3 Bucket
Setting Up Lifecycle Policies on the S3 Bucket
Enabling Server Access Logging On the S3 Bucket