Rubrik

Integration

To integrate Storj with Rubrik, you will need to create S3 credentials in Storj and add them within Rubrik.

Requirements

  • An active Storj account
  • A bucket for use with Rubrik in your Storj instance
  • An active Rubrik Security Cloud (RSC) account and installation

Create an Account

To begin, you will need to create a Storj account.

Navigate to https://www.storj.io/signup?partner=rubrik to sign up, or log in https://storj.io/login if you already have an account.

Create a Bucket

Once you have your Storj account you can create a bucket for your data to be stored in.

  1. Navigate to Browse on the left side menu.

  2. Click on the New Bucket button.

  3. Assign the bucket an easily identifiable name, such as "my-bucket".

  4. Optional: Enable Object Lock (required for immutability in many applications).

    • If you enable Object Lock, you can also set a default retention period using either Governance or Compliance Mode

  5. Optional: Enable Object Versioning (note that this will be enabled by default if Object Lock is enabled)

  6. Click Create bucket

Generate S3 credentials

Storj has an Amazon S3 compatible API and you'll need generate S3 credentials to use it. S3 credentials consist of an access key, secret key, and endpoint.

Create S3 credentials in the Storj console:

  1. Navigate to Access Keys on the left side menu.

  2. Click the New Access Key button.

  3. When the New Access dialog comes up, set specifications according to the following guidelines:

    • Name: The name of the credentials (e.g. my-access)
    • Type: S3 Credentials

  4. Choose Full Access or Advanced

    • In most cases, you DO NOT want to choose full access.

  5. Provide Access encryption Information

    In order to see the data uploaded to your bucket in the Storj console, you must unlock the bucket with the same encryption passphrase as the credentials.

    • Use the current passphrase: this is default option
    • Advanced: you may provide a different encryption phrase either your own or generate a new one.
      • Enter a new passphrase: use this option, if you would like to provide your own new encryption phrase
      • Generate 12-word passphrase: use this option, if you would like to generate a new encryption phrase

  6. Select the permissions you want to allow:

    • Read
    • Write
    • List
    • Delete

  7. Select the object lock permissions you want to allow

    • PutObjectRetention
    • GetObjectRetention
    • BypassGovernanceRetention
    • PutObjectLegalHold
    • GetObjectLegalHold
    • PutObjectLockConfiguration
    • GetObjectLockConfiguration

  8. Choose the buckets you want the access to include:

    • All Buckets
    • Select Buckets

  9. Set an expiration

  10. Click Create Access to finish creation of your S3 credentials

  11. Your S3 credentials are created. Write them down and store them, or click the Download all button. You will need these credentials for the following steps.

Object Lock Permission Details

Permission NameDescription
PutObjectRetentionAllows you to set retention policies, protecting objects from deletion or modification until the retention period expires.
GetObjectRetentionAllows you to view the retention settings of objects, helping ensure compliance with retention policies.
BypassGovernanceRetentionAllows you to bypass governance-mode retention, enabling deletion of objects before the retention period ends.
PutObjectLegalHoldAllows you to place a legal hold on objects, preventing deletion or modification regardless of retention policies.
GetObjectLegalHoldAllows you to view the legal hold status of objects, which is useful for auditing and compliance purposes.
PutObjectLockConfigurationAllows you to set retention policies on the specified bucket, automatically applying them to every new object added to that bucket.
GetObjectLockConfigurationAllows you to view the default retention policies configured for the specified bucket.

Connecting Rubrik to Storj

Cloud Credentials Configuration

  1. Log into your Rubrik Security Cloud (RSC) Account:

  2. Go to Settings:

  3. Go to the Archival & Storage dropdown and select Data Center Archival Locations:

  4. In Create Archival Location, select Object Store (S3 Compatible) and hit Next:

  5. In Select object store vendor, select Amazon S3 compatible and hit Next:

  6. Enter Storage Information and follow steps to add Archival Location:

  7. Verify Archival Status:

  8. Create or Edit SLA and turn Archiving to On:

  9. Select your Storj Archival Location:

  10. Select Archiving Policy:

  11. Assign SLA to VMs; Hosts; etc. and begin backup snapshots and archiving. You can view the Events tab in RSC to monitor backup snapshots and archiving.

Confirming backups via the Storj.io website

  1. Once the backup snapshot indexing and Ransomware Threat Monitoring analysis (if enabled) are completed in RSC (you can view them in the events tab), Storj should look like this:

  2. Everything is immutable and encrypted from within Rubrik:

Previous
Restic
Next
Rucio