Help Center> Object Storage Service> Console Operation Guide> Getting Started> Creating a Bucket
View PDF

Creating a Bucket

This section describes how to create a bucket on OBS Console. A bucket is a container that stores objects in OBS. Before you store data in OBS, you need to create a bucket.

An account (including all IAM users under the account) can create a maximum of 100 buckets. You can leverage the fine-grained permission control capability of OBS to properly plan and use buckets. For example, you can create folders in a bucket based on object prefixes and use fine-grained permission control to implement permission isolation between departments.

Procedure

  1. In the navigation pane on the left of OBS Console, choose Object Storage.
  2. In the upper right corner, click Create Bucket. The Create Bucket page is displayed. For details, see Figure 1.

    Figure 1 Creating a bucket

  3. Configure bucket parameters.

    Table 1 Bucket parameters

    Parameter

    Description

    Region

    Geographic area where a bucket resides. For low network latency and quick resource access, select the nearest region. Once a bucket is created, the region cannot be changed.

    If your ECS needs to access an OBS bucket over the intranet, ensure that the bucket and the ECS are in the same region. For details, see Accessing OBS over Intranet.

    Data Redundancy Policy
    • Multi-AZ Storage: Data is stored across multiple AZs to achieve higher reliability.
    • Single-AZ Storage: Data is stored in a single AZ, with lower costs.

    Once a bucket is created, the data redundancy storage policy cannot be changed, so plan in advance and select the policy that can meet your service needs.

    • A bucket in the Archive storage class does not support the multi-AZ mode.

    Bucket Name

    Name of the bucket. The bucket name must be unique across all accounts and regions. Once a bucket is created, you cannot change its name.

    An OBS bucket must be named according to the globally applied DNS naming rules as follows:

    • A bucket name must be unique across all accounts and regions.
    • A bucket name must contain 3 to 63 characters. Only lowercase letters, digits, hyphens (-), and periods (.) are allowed.
    • A bucket name cannot start or end with a period (.) or hyphen (-), and cannot contain two consecutive periods (.) or contain a period (.) and a hyphen (-) adjacent to each other.
    • A bucket name cannot be an IP address.
    • If a bucket name contains any period (.), the security certificate verification may be triggered when you access the bucket or objects in the bucket.

    Default Storage Class

    Storage classes of a bucket. Different storage classes meet different requirements for storage performance and costs.

    • The Standard storage class features low access latency and high throughput. It is therefore suitable for storing a massive number of hot files (frequently accessed every month) or small files.
    • The Infrequent Access storage class is ideal for storing data that is semi-frequently accessed (less than 12 times a year), with requirements for quick response.
    • The Archive storage class is suitable for archiving data that is rarely-accessed (averagely once a year), without requirements for quick response.

    For details, see Storage Classes.

    Bucket Policy

    Controls read and write permissions for buckets.

    • Private: Only users granted permissions by the ACL can access the bucket.
    • Public Read: Anyone can read objects in the bucket.
    • Public Read and Write: Anyone can read, write, or delete objects in the bucket.

    Default Encryption

    After the default encryption is enabled for a bucket, all objects uploaded to the bucket are encrypted. The obs/default key is used for encryption by default. You can also click Create KMS Key to create a key on the DEW console. Then select the key on OBS Console for KMS encryption.

    If the default encryption is enabled for a bucket, uploaded objects are automatically encrypted.

    Direct Reading

    Direct reading allows you to directly download objects from the Archive storage class without restoring them in advance. Direct reading is a billable function. For details, see Product Pricing Details.

    Enterprise Project

    You can add a bucket to an enterprise project for unified management.

    Create an enterprise project by referring to Creating an Enterprise Project. The default enterprise project is named default.

    On the Enterprise Project Management page, create an enterprise project, and add a user group to the enterprise project. By doing so, the user inherits the permissions of the user group to operate authorized buckets and objects in the enterprise project.

    NOTE:

    Only an enterprise account can configure enterprise projects.

    OBS ReadOnlyAccess and OBS OperateAccess are the fine-grained authorizations of the enterprise project user group in OBS.

    Tags (optional)

    Tags are used to identify and classify buckets in OBS. Each tag is represented by a key-value pair.

    For more information, see Tags.

  4. Click Create Now.
Parent topic: Getting Started