This is the multi-page printable view of this section. Click here to print.

Return to the regular view of this page.

Object Storage

1: Overview

1.1: Amazon S3 Usage Guide
1.2: Monitoring Metrics
1.3: ServiceWatch Metrics

2: How-to guides

2.1: Access Control
2.2: File and Folder Management
2.3: Version Management
2.4: Permission Management
2.5: Replication Policy Management

3: Release Note

1 - Overview

Service Overview

Object Storage is object storage that allows users to easily store and use the data they want and can be accessed via URL, making data management very convenient. It enables searching and retrieving large-scale data, and you can leverage features such as encryption and version control. Provides both public and private URLs, and public URLs are accessible over the internet.

Features

S3 API utilization: Through a Restful API, applications can access it easily and quickly, and since it is compatible with Amazon S3, it can be used effortlessly in applications that integrate with Amazon S3.
Safe Use: Encryption (SSE‑S3), access control, and Public/Private access features are provided, making it suitable for securely storing user data or backup data for service recovery.
Cost Efficiency: Users do not predefine the bucket’s capacity and are provided storage space with an efficient pricing model that charges only for the amount used.
Replication: You can perform replication to a bucket in a different location or the same location. * You can configure multiple replication policies, and if the source bucket becomes unavailable due to a failure or disaster, you can provide service through the replica bucket.

Configuration diagram

Provided Features

Object Storage provides the following features.

Storage Management: Provides Object Storage creation, folder creation, folder deletion, file upload, file download, and file deletion functions.
Version control: When you use version control, all versions of the uploaded files are managed. * You can easily download previous files by viewing the version list.
Encryption: If you enable encryption, encryption is provided via the SSE‑S3 method.
Access Control: Using access control, you can directly enter the Public IP allowed to access Object Storage or select resources (Virtual Server, Bare Metal Server, VPC Endpoint, etc.) within the same Account that are permitted to access.
Replication: You can perform replication to a bucket in a different location or the same location.
- Multiple replication policies can be configured
Permission Management: It is provided with Private permission by default, and offers Public permission and permission management features.
- Private permission: Allow file access and download only to users who know the authentication key.
- Public permission: Accessing the file via its URL makes the file publicly available and downloadable to anyone worldwide
Monitoring: You can view monitoring information such as total file count, data size (Bytes), and HTTP method request counts through the Cloud Monitoring service.
ServiceWatch Service Integration Offering: You can monitor data through the ServiceWatch service.

Component

Authentication key

The authentication key is a required element that must be created in advance to use Object Storage.
The purpose of using the authentication key is as follows.

In the Samsung Cloud Platform Console, you need an authentication key to create and access the Object Storage service.
The API provided by Object Storage is compatible with Amazon S3, and you can use the same tools that leverage Amazon S3. * At this point, entering an authentication key is required, and it is used as a tool to identify whether the user has the appropriate permissions. For detailed instructions on creating and verifying authentication keys, see How-to guides > 인증키 생성하기.

Bucket

A bucket is the top-level folder, and all folders and files exist under the bucket. When you create an Object Storage service in the Samsung Cloud Platform Console, a bucket is created, and you can subsequently upload folders or files.
The bucket name creation rules are as follows.

Bucket names must be at least 3 characters and at most 63 characters.
Bucket names can consist only of lowercase English letters, numbers, periods. and hyphens-.
Bucket names must start with a lowercase letter or a digit.
Bucket names must not contain two consecutive periods.
Bucket names cannot end with a period or hyphen.
Bucket names cannot have a period and hyphen adjacent to each other.
Bucket names do not use the IP address format (e.g., 192.168.x.x).
The bucket name cannot be admin.
Bucket names must be unique within an Account/Region.
The bucket name you used previously will be available in 1 hour.

Example of a valid bucket name	Example of an invalid bucket name
The following bucket names can be used cpexamplebucket1 scp-example-bucket-01 my-scp-object-storage	The following bucket names cannot be used scp_example_bucket (contains an underscore) DocExampleBucket (contains uppercase letters) -scp-example-bucket (starts with a hyphen)

Example of a valid bucket name

Example of an invalid bucket name

The following bucket names can be used

cpexamplebucket1

scp-example-bucket-01

my-scp-object-storage

The following bucket names cannot be used

scp_example_bucket (contains an underscore)

DocExampleBucket (contains uppercase letters)

-scp-example-bucket (starts with a hyphen)

Folder

A folder (Folder) is used to logically group files.
The folder name generation rules are as follows.

Folder names can consist of Korean characters, English letters, numbers, and special characters.
The special characters that cannot be entered are as follows.

Special characters that cannot be used in folder names

Special characters that cannot be used in folder names
percentage sign`%` ampersand`&` question mark`?` exclamation mark`!` less-than sign`<`, greater-than sign`>` slash`/` equals sign`=` plus sign`+` dollar`$` pound sign`#` apostrophe`’` caret`^` vertical bar/pipe`\`

percentage sign%

ampersand&

question mark?

exclamation mark!

less-than sign<, greater-than sign>

slash/

equals sign=

plus sign+

dollar$

pound sign#

apostrophe’

caret^

vertical bar/pipe\

File

A file (File) refers to data stored in Object Storage and is the same as a regular file.
The filename generation rules are as follows.

Filenames can consist of Korean characters, English letters, numbers, and special characters.
The special characters that cannot be entered are as follows.

Special characters that cannot be used in file names

Special characters that cannot be used in file names
percent sign`%` ampersand`&` question mark`?` exclamation mark`!` less-than sign`<`, greater-than sign`>` slash`/` equals sign`=` plus sign`+` dollar sign`$` pound sign`#` backslash`\` apostrophe`’` caret`^` vertical bar/pipe`\`

percent sign%

ampersand&

question mark?

exclamation mark!

less-than sign<, greater-than sign>

slash/

equals sign=

plus sign+

dollar sign$

pound sign#

backslash\

apostrophe’

caret^

vertical bar/pipe\

Folder names and file names are separated by a slash/. The following are examples of valid folder and file names.

Example of mixed use of folder and file names
3scp-example my.happy_photo-2024/20240101.jpg video/2024/video01.wmv

Example of mixed use of folder and file names

3scp-example

my.happy_photo-2024/20240101.jpg

video/2024/video01.wmv

Reference

The length of the path, including the folder name, file name, and separator (/), is limited to within 1,024 bytes (based on UTF-8 encoding).

URL

You can access the Object Storage bucket via URL. By providing public and private URLs, access is possible not only within the same Samsung Cloud Platform environment but also from external internet environments.
The URL structure is composed as follows.

URL without using Account ID	URL that uses the Account ID
https://[대표URL]/[bucket명]/[폴더명]/[파일명]	https://[대표URL]/[accountId]:[bucket명]/[폴더명]/[파일명]

Category	Explanation	example
Main URL	Representative URL is available at the Object Storage 상세 정보 확인하기 URL Representative URL includes the region name.	-
accountId	account ID When accessing a file that allows Public Access without an authentication key (Access Key, Secret Key), you need to enter the account ID; otherwise, you can connect without an account ID. Refer to Authentication Key and Permission Management	`c2ef8be0481d4094af3c6d046e536d25`
bucket name	User-created bucket name	`bucketname`
Folder name	Folder name where the file is located	`folder/folder01/folder02/`
Filename	File name	`Filename02`

Table. Object Storage URL components

The full URL information for the file can be viewed at View File Information.

Constraints

The limitations of Object Storage are as follows.

Category	Explanation
Number of creatable Object Storage services	No more than 1,000 per region
File name length (including path)	up to 1,024 Bytes
File upload size	Console: Up to 3GB per uploaded file Upload API: Single upload: 5GB, multipart: 5TB
Number of files in the bucket	200 million or fewer

Table. Object Storage constraints

Caution

It is recommended to store no more than 200 million files per bucket. * If the number of files exceeds 200 million, you may experience a sharp performance degradation, so manage the file count.
S3 Backend Filesystem solution (ex. * When using s3fs, objectivefs, etc., we recommend not employing version control. * Performance degradation may occur when using version control.

Reference

After changing IAM permissions, performing an Amazon S3 API call may take up to 30 seconds.
Object Storage cannot be used for file upload and download when the IAM policy uses a temporary authentication type.

Reference

South Korea (kr-south3) region constraints
- File upload and download functions via the Samsung Cloud Platform Console are restricted.
- Use of the S3 API/CLI via a public URL is restricted.
- However, private URL access is possible through resources (such as Virtual Server) created in the Samsung Cloud Platform Console.
Region constraints for South Korea South 1 (kr-south1) and South Korea South 2 (kr-south2)
- A separate firewall rule must be allowed to enable access to the public URL.
- The public URL can be viewed on the Object Storage detail page. * Object Storage Detailed Information Check please refer to it.

Preceding Service

Object Storage has no prerequisite services.

1.1 - Amazon S3 Usage Guide

Object Storage provides functions such as creating services, viewing lists, retrieving folder lists, creating folders, uploading files, and downloading files through the Samsung Cloud Platform Console. These functions are also available via an API compatible with Amazon S3. Therefore, tools that use Amazon S3 can be used in the same way.
To use Amazon S3’s utility tools, you need to generate and verify an authentication key. For detailed information, see Create Authentication Key.

Amazon S3 API

The list of Amazon S3 APIs supported by the Samsung Cloud Platform Object Storage service is as follows.

Reference

For detailed information about the Amazon S3 API, see the Amazon S3 API Guide.

Category	Detailed description
head-bucket	Retrieve bucket information
list-buckets	List buckets
get-bucket-versioning	Bucket version management query
put-bucket-versioning	Bucket version control modification
get-bucket-encryption	Retrieve bucket encryption settings
put-bucket-encryption	Apply bucket encryption settings
delete-bucket-encryption	Delete bucket encryption configuration
copy-object	Copy, move, rename objects
put-object	Object creation
get-object	Object download
list-objects	Retrieve object list
head-object	Object detail view
get-object-acl	Retrieve Object ACL
delete-object	Object deletion When versioning is enabled, deleting a file adds a Delete Marker to the file, and the Delete Marker becomes the latest version To permanently delete a file, specify the version ID for deletion
list-object-versions	View object version list
delete-object	Delete object version
presign	Issue a Presigned URL for PUT object
get-bucket-acl	Check bucket public permissions
create-bucket	Create bucket
delete-bucket	Delete bucket
get-bucket-cors	Check bucket CORS (Cross OriginResources) configuration
put-bucket-cors	Create bucket CORS (PUT)
delete-bucket-cors	Delete bucket CORS
put-bucket-tagging	Create bucket tagging
get-bucket-tagging	Bucket tagging query
delete-bucket-tagging	Delete bucket tagging
put-bucket-website	Create bucket website
get-bucket-website	View bucket website
delete-bucket-website	Delete bucket website
get-bucket-policy-status	Check bucket policy status
put-bucket-acl	Create bucket ACL
create-multipart-upload	Create multipart upload
upload-part	Perform multipart upload
complete-multipart-upload	Multipart upload completed
list-multipart-uploads	Multipart upload list
abort-multipart-upload	Delete incomplete Multipart upload
put-object-tagging	Object tagging creation
get-object-tagging	Object tagging query
delete-object-tagging	Delete object tagging
list-objects-V2	Object Lookup (v2)
put-object-acl	Create object ACL
list-parts	Parts lookup
put-public-access-block	Create public access block
get-public-access-block	public access block lookup
delete-public-access-block	Delete public access block
put-bucket-lifecycle	Create bucket Lifecycle (only Expiration rule can be used)
get-bucket-lifecycle	View Bucket Lifecycle
delete-bucket-lifecycle	Delete bucket lifecycle
put-bucket-policy	Create bucket policy(* reference)
get-bucket-policy	View bucket policy
delete-bucket-policy	Delete bucket policy
put-bucket-replication	Edit bucket replication policy When using replication-configuration, verify the following Role: IAM SRN required Rules > Destination Bucket: Bucket SRN required If the Rule ID is not provided, it is automatically generated with a random value Rule priority is not applied, so any value entered has no effect (you can set all to 1) Changing the Rule ID creates a new policy (the existing policy is deleted)
get-bucket-replication	Retrieve bucket replication policy
delete-bucket-replication	Delete bucket replication policy

Table. List of Amazon S3 supported APIs

Example of creating a bucket policy

put-bucket-policy when used, refer to the following example.

{
  "Statement": [
    {
      "Action": "s3:*",
      "Condition": {
        "IpAddress": {
          "scp:SourceIp": []
        },
    &#34;Resource&#34;: {
      &#34;scp:SourceDBaaSId&#34;: [],
      &#34;scp:SourceResourceId&#34;: [],
      &#34;scp:SourceVpcEndpointId&#34;: []
    },
&amp;#34;Service&amp;#34;: {
  &amp;#34;scp:ServiceScf&amp;#34;: &amp;#34;false&amp;#34;
}
},
&#34;Effect&#34;: &#34;Allow&#34;,
&#34;Principal&#34;: &#34;*&#34;,&#34;Resource&#34;: [
&#34;Object Storage SRN&#34;,
&#34;Object Storage SRN/*&#34;
]
}
],"Version": "2012-10-17"
}

Action, Effect, Principal, Resource cannot be modified.
- Enter the Object Storage SRN and Object Storage SRN/* in Resource.
Condition in IpAddress, Resource, Service can be modified as follows.
- IpAddress: Enter a single IP or CIDR format.
- Resource: Enter each resource ID.
- Service: false or true
- For detailed information about permissible targets, refer to Setting Access Control.

Amazon S3 CLI

To use Amazon S3 with the AWS CLI, refer to the Amazon S3 CLI Guide.

Amazon S3 SDK for Java

To use the Amazon S3 SDK for Java, please refer to Amazon S3 SDK Guide.

Reference

For SDK guides and Rest API guides for other languages, see the AWS official website.

Reference

Refer to the following for the region parameter required to use the Amazon S3 SDK.
- For Korea West (kr-west1): kr-west
- When South Korea 1,2,3 (kr-south1,2,3): kr-south
The region parameter is for reference only, and the actual region is determined based on the URL.

Reference

South Korea Region 3 (kr-south3) constraints
- File upload and download capabilities are limited through the Samsung Cloud Platform Console.
- Use of the S3 API/CLI via a public URL is restricted.
- However, private URL access is possible through resources (such as Virtual Server) created in the Samsung Cloud Platform Console.
South Korea South 1 (kr-south1), South Korea South 2 (kr-south2) region restrictions
- To access the public URL, you must allow a separate firewall configuration.
- You can view the public URL address on the Object Storage details page. Refer to Check Object Storage Details.

1.2 - Monitoring Metrics

Cloud Monitoring service termination notice

According to Samsung Cloud Platform’s policy, the Cloud Monitoring service is scheduled to be discontinued.
Accordingly, after the September 2026 release, resource monitoring of the Samsung Cloud Platform via Cloud Monitoring will no longer be possible.

With the new alternative service, you can continuously perform resource monitoring by using ServiceWatch, released in October 2025.
ServiceWatch provides more modern and powerful features, replacing Cloud Monitoring to deliver a smooth monitoring environment.

Detailed information about ServiceWatch is available in the ServiceWatch Overview.

Object Storage Monitoring Metrics

The table below shows the monitoring metrics for Object Storage that can be viewed through Cloud Monitoring. For detailed usage of Cloud Monitoring, refer to the Cloud Monitoring guide.

Performance Item Name	Explanation	unit
Objects	Number of objects stored in the bucket	cnt
Bucket Used	Amount of data stored in the bucket (bytes)	bytes
Requests [Upload Avg]	Upload usage per bucket	bytes
Requests [Download Avg]	Download usage per bucket	bytes
Requests [Total]	Total number of HTTP requests executed in the bucket	cnt
Requests [Get]	Number of HTTP GET requests executed on objects in the bucket	cnt
Requests [Head]	Number of HTTP HEAD requests executed for objects in the bucket	cnt
Requests [List]	Number of LIST requests executed for objects in the bucket	cnt
Requests [Post]	Number of HTTP POST requests executed on objects in the bucket	cnt
Requests [Put]	Number of HTTP PUT requests executed on objects in the bucket	cnt
Requests [Delete]	Number of HTTP DELETE requests executed on objects within the bucket	cnt

Table. Object Storage Monitoring Metrics

1.3 - ServiceWatch Metrics

Object Storage sends metrics to ServiceWatch. The metrics provided by default monitoring are data collected at 5‑minute intervals. In Object Storage, you can view replication metrics by policy in ServiceWatch by enabling ServiceWatch replication metrics per bucket.

Refer to How-to guides > Object Storage Activating Replication Metrics for how to enable ServiceWatch replication metrics.

Reference

For how to view metrics in ServiceWatch, refer to the ServiceWatch guide.

Basic Metrics

The following are the basic metrics for the Object Storage namespace.

The indicators whose names are displayed in bold below are the key indicators selected from the basic metrics provided by Object Storage. Key metrics are used to configure service dashboards that are automatically generated for each service in ServiceWatch.

Each metric indicates through the user guide which statistical value is meaningful when viewing that metric, and among the meaningful statistics, the statistical values shown in bold text are the primary statistics. In the service dashboard, primary metrics can be viewed using the primary statistical values.

Performance items	Detailed description	unit	Meaningful statistics
object_count	Number of objects stored in the bucket	Count	average
object_byte	Amount of data stored in the bucket	Bytes	average

Table. Object Storage Basic Metrics

Replication Metric

The following are replication metrics. Replication metrics are collected per replication policy. Replication metrics are collected only when ServiceWatch replication metrics are enabled for each bucket. The replication metrics are as follows.

Performance items	Detailed description	unit	Meaningful statistics
replication_total_count	Total number of objects to be transferred	Count	maximum
replication_transferred_count	Number of transmitted objects	Count	Total
replication_progress_count	Number of objects being transferred	Count	maximum
replication_queued_count	Number of objects pending transmission	Count	maximum
replication_pending_count	Number of objects with transmission delay	Count	maximum
replication_failure_count	Number of failed transmission objects	Count	Total
replication_total_bytes	Total transfer target size	Bytes	maximum
replication_transferred_bytes	Data transferred	Bytes	Total
replication_max_processing_time	Maximum processing time	Seconds	maximum
replication_avg_processing_time	Average processing time	Seconds	average

Table. Object Storage replication metrics

2 - How-to guides

Users can create the service by entering the required Object Storage information and selecting detailed options through the Samsung Cloud Platform Console.

Create authentication key

To create and use the Object Storage service in the Samsung Cloud Platform Console, you must first generate an authentication key.

You can generate an authentication key at My menu > My Info. > Authentication Key Management > Generate Authentication Key. For more details, refer to IAM > Create Authentication Key.

Reference

Authentication keys (Access Key, Secret Key) are used when authenticating Amazon S3 utilities.
The authentication key is used not only for Object Storage but also for authentication with OpenAPI and the CLI.
You can generate up to two authentication keys.

Caution

If the authentication key expires, access to the Object Storage service will be restricted. To ensure smooth service usage, check the authentication key’s expiration period in advance.
If you disable the authentication key, access permissions to the Object Storage service will be restricted.

Create Object Storage

You can create and use the Object Storage service from the Samsung Cloud Platform Console.

To create an Object Storage, follow these steps.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page of Object Storage.
Click the Create Object Storage button on the Service Home page. You will be taken to the Create Object Storage page.

On the Object Storage Creation page, enter the information required to create the service.

Category	Required	Detailed description
Bucket name	Required	Bucket name created by the user must start with a lowercase letter or digit and be composed of lowercase letters, digits, hyphen`-`, and period`.` using 3 to 63 characters period`.`cannot appear consecutively two or more times. period`.`and hyphen`-`cannot be adjacent. period`.`or hyphen`-`cannot be at the end. IP address format is not allowed admin name is not allowed For detailed information about bucket names, see Bucket Naming Rules.

Check detailed information of Object Storage

Object Storage service allows you to view and edit the full resource list and detailed information.
The Object Storage Details page consists of Details, Folder List, Tags tabs.

To view detailed information about the Object Storage service, follow these steps.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page of Object Storage.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
On the Object Storage List page, click the resource whose detailed information you want to view. You will be taken to the Object Storage Details page.
- Object Storage Details page displays status information and additional feature information, and consists of Details, Folder List, Replication, Tags tabs.
  Category Detailed description
  Bucket status Bucket status
  Active: Available
  Service termination Cancel Service button
  Table. Status information and additional features

Category	Detailed description
Bucket status	Bucket status Active: Available
Service termination	Cancel Service button

Reference

Object Storage resources do not support operation history.
If needed, please check via the Logging&Audit service. For more details, see Logging & Auddit > How-to Guides.

Detailed Information

Object Storage List page lets you view detailed information of the selected resource and edit it if necessary.

Category	Detailed description
Service	Service name
Resource Type	Resource Type
SRN	Unique resource ID in Samsung Cloud Platform In the Object Storage service, it refers to a bucket SRN
Resource name	Resource Name In the Object Storage service, it refers to the bucket name
Resource ID	Unique resource ID in the service
Bucket name	User-created bucket name
Category	Field that distinguishes between original and replica Currently only the original exists, and a replica will be added when the DR feature is introduced later
Usage	Total data usage of the bucket
Encryption	Encryption usage information When encryption is enabled, the SSE‑S3 encryption key method and the AES256 encryption algorithm are applied Encryption settings can be configured on the Object Storage Details page after creating an Object Storage For detailed information on encryption settings, refer to Object Storage Encryption Settings
Version control	Version Management Usage Information If you need to configure version management, click the Edit button For detailed information on version management, refer to Version Management
URL	Object Storage provides Public and Private URLs for access Public: Provided for access from external networks Private: Provides an address accessible from resources created within the same Account in the Samsung Cloud Platform Console
Access Control	When access control is enabled, you can restrict access to the bucket so that only authorized resources can access it After switching to use access control, click the Edit button for each permission to add the resources you want to allow Public IP Allowance: Add using a single IP/CIDR format Service Resource Allowance: Select service resources created in the same account/region Cloud Functions Service: Set whether the service is enabled For more details on access control, see 접근 제어 for reference

Table. Object Storage detailed information tab items

Folder list

You can view the list of folders and files stored in the bucket via the Folder List tab.

Category	Detailed description
Name	File name or folder name
size	File size
Modification date and time	The date and time the file was last modified
Additional features > More	File and folder management buttons File Information: View additional information about the file For details on viewing file information, see View File Information File Copy: Copy the file For details on copying files, see Copy File Edit Permissions: Set the file’s Public Access permission For details on editing permissions, see Permission Management Version List: If versioning is enabled, view the version list For details on version management, see Version Management Download: Download the selected file For details on file download, see Download File Create Presigned URL: Allows file download using a Presigned URL for the configured duration Enter the required usage time (1–720 minutes), then click the Create button to generate Delete: Delete the selected file or folder For folders, only deletion is possible
New folder	Add new folder For details about the new folder, refer to Create New Folder
File upload	Upload a new file or a file you are working on For more details on file upload, see File Upload
Delete	Delete file or folder When multiple files are selected, the Delete button is enabled Deletion possible when selecting a single/multiple folder(s) Deletion possible when selecting a single/multiple file(s) Deletion possible when selecting multiple files and folders
Download	File download Downloadable only when a single file is selected Button disabled when a folder is selected Button disabled when multiple files are selected Button disabled when multiple files and folders are selected

Table. Folder list tab items

Reference

South Korea Region 3 (kr-south3) constraints
- File upload and download capabilities are limited through the Samsung Cloud Platform Console.
- Use of the S3 API/CLI via a public URL is restricted.
- However, private URL access is possible through resources (such as Virtual Server) created in the Samsung Cloud Platform Console.
South Korea South 1 (kr-south1), South Korea South 2 (kr-south2) region restrictions
- To access the public URL, you must allow a separate firewall configuration.
- You can view the public URL address on the Object Storage details page. Refer to Object Storage Check Detailed Information.
If the delete marker is the latest version, it cannot be seen in the folder list.
The delete marker version cannot be viewed in the version list.

Replication

Object Storage List page lets you view and manage the replication information of the selected resource.

Category	Detailed description
Policy Name	Enter the replication policy name using English letters, numbers, and special characters (`-,.`) within 255 characters
Replication target	Replication target bucket name
Clone location	Replication location (region)
target file	List of files to be replicated
status	Replication policy status Active: Enabled Inactive: Disabled
Add	Add a new replication policy For detailed information on adding a replication policy, refer to Add Replication Policy
More	Policy management available Disable: Disable the policy (displayed as enabled when disabled) Edit: Modify the replication target, target files, and options of the replication policy For detailed information on editing replication policies, refer to 복제 정책 수정하기 Delete: Delete the policy For detailed information on deleting replication policies, refer to 복제 정책 삭제하기
Service Watch replication metrics	Enable replication metrics to view monitoring data for Object Storage replication in Service Watch Grant permission for Object Storage’s BucketReplicationMetric Additional charges apply when using replication metrics Click the Edit button to change whether replication metrics are enabled Refer to the default Object Storage metrics at ServiceWatch metrics See ServiceWatch for how to view metrics in ServiceWatch

Table. Object Storage replication information tab items

Category	Detailed description
Tag list	Tag list You can view the Key and Value information of tags Up to 50 tags can be added per resource When entering a tag, you can search and select from the list of previously created Keys and Values

Job History

Reference

Object Storage resources do not support operation history.
If needed, please check via the Logging&Audit service. For more details, see Logging&Auddit > How-to Guides.

Object Storage Encryption Configuration

You can configure the bucket to encrypt the data stored in it. After enabling bucket encryption, the encryption settings are applied to uploaded data. When encryption is used, the SSE‑S3 encryption key method and the AES256 encryption algorithm are applied.

Reference

Object Storage’s bucket encryption can provide two options (SSE‑S3/SSE‑KMS). SSE‑S3 is server‑side encryption (SSE‑S3) using Amazon S3 managed keys. SSE‑KMS is server‑side encryption (SSE‑KMS) using Key Management Service (KMS) keys.
In this service, we have launched server‑side encryption (SSE‑S3) using Amazon S3 managed keys as the default method, and server‑side encryption (SSE‑KMS) using Key Management Service (KMS) keys will be offered later according to the service roadmap.

guide

If there is data that was stored before the bucket encryption was configured, the encryption setting will not be applied.

If you re‑upload the file, the encryption will be applied.
To enable encryption for existing data, you need to re‑upload it.

Object Storage Follow the steps below to enable bucket encryption.

Click the All Services > Storage > Object Storage menu. You will be taken to the Service Home page of Object Storage.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
On the Object Storage list page, click the resource (bucket) to use for encryption. You will be taken to the Object Storage details page.
On the Object Storage Details page, verify whether encryption is not used.
If Encryption is unused, click the Edit button.Encryption Edit Popup opens.
After checking Use for encryption, click the Confirm button.

Terminate Object Storage

You can cancel unused Object Storage to reduce operating costs. However, if you cancel the service, the running service may be stopped immediately, so you should thoroughly consider the impact of service interruption before proceeding with the cancellation.

Caution

Service termination is possible for buckets that have no stored data.
If a file is being uploaded, the upload will be canceled.
Please be careful, as data cannot be recovered after deletion.

To cancel Object Storage, follow the steps below.

Click the All Services > Storage > Object Storage menu. You will be taken to the Service Home page of Object Storage.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
On the Object Storage list page, select the resource (bucket) to cancel, and click the Cancel Service button.
Enter bucket name to confirm cancellation.
If you have entered the Bucket name correctly, the Confirm button will be activated. Click the Confirm button.
When termination is complete, verify on the Object Storage list page that the resource has been terminated.

2.1 - Access Control

If you set bucket access control to enabled, only resources that are permitted can access the bucket. You can enter a public IP or configure settings to allow access to resources created in the Samsung Cloud Platform Console.

Setting up Access Control

You can set the bucket’s access control to enabled.

Object Storage Follow the steps below to configure access control settings.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
Object Storage List page, click the resource (bucket) to set access control. You will be taken to the Object Storage Details page.
Verify on the Object Storage Details page whether access control is unused.
Access control is disabled, click the Edit button. Access control edit popup opens.
After checking Use for access control, click the Confirm button. In the Object Storage Details page, access control will be set to Use.

guide

If you change the access control to Enabled, you can configure the access control for Public UP, service resources, and Cloud Functions services.

Register service resources to grant access using a Public IP, or configure whether to enable access control for the Cloud Functions service.

Category	Detailed description
Allow public IP	Add registered Public IP or CIDR Example: 192.168.x.x, 192.168.x.x/24
Allow service resources	Select service resources created in the same Account/Region Service: Service name Examples: Virutal Server, GPU Server, Bare Metal Server, Multi-node GPU Cluster, VPC Endpoint, PostgreSQL, MariaDB, MySQL, EPAS, Microsoft SQL Server Resource name: Name of the service resource
Allow Cloud Functions service	Setting whether to allow Object Storage access to modify Java Runtime code in the Cloud Functions service When set to Allow, the Cloud Functions service can retrieve Java Runtime executable files stored in Object Storage.

Allow public IP access

If the bucket’s access control is set to enabled, you can add a public IP allowance.

To add Public IP access permission in Object Storage, follow the steps below.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
On the Object Storage List page, click the resource (bucket) for which you want to set access control. You will be taken to the Object Storage Details page.
On the Object Storage Details page, verify that access control is enabled.
- If Access Control is Disabled, click the Edit button, then change Access Control to Enabled in the Access Control popup.
- When access control is enabled, only the Allow IP Access, Allow Service Resources, Allow Cloud Functions Service lists are displayed.
Click the Edit button in Allow Public IP. The Edit Allow Public IP popup window opens.
Enter the Public IP to allow access, and click the Add button.
column Required Detailed description
Allow public IP Required Enter a single IP or CIDR format (up to 150 entries)
192.168.x.x (IP format)
192.168.x.x/24 (CIDR format)
Table. Public IP Allowance Edit Popup Input Fields
Verify the items added to the list and click the Confirm button.
Check the added Public IP in the Object Storage Details page’s Access Control > Allow Public IP list.

column	Required	Detailed description
Allow public IP	Required	Enter a single IP or CIDR format (up to 150 entries) 192.168.x.x (IP format) 192.168.x.x/24 (CIDR format)

Reference

If you modify the public IP allowance, it may take up to 30 seconds for the changes to be applied.
A maximum of 150 public IPs are allowed.

Allow access to service resources

If access control is set to enabled on the bucket, you can add service resources in the service resource allowance.

To permit access to service resources in Object Storage, follow the steps below.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
On the Object Storage List page, click the resource (bucket) for which you want to set access control. You will be taken to the Object Storage Details page.
Verify that Access Control is enabled on the Object Storage Details page.
- If Access Control is Disabled, click the Edit button, then change Access Control to Enabled in the Access Control popup.
- When access control is enabled, only the Allow IP Access, Allow Service Resources, Allow Cloud Functions Service lists are displayed.
Click the Edit button in Service Resource Allowance. The Service Resource Selection popup opens.

guide

The permissible criteria for each service are as follows.
- Virtual Server/GPU Server/Bare Metal Server/Multi-node GPU Cluster: Allowed per server
- VPC Endpoint: Allow per VPC Endpoint
- PostgreSQL, MariaDB, MySQL, EPAS, Microsoft SQL Server: Allowed per cluster
The following steps are required to access Object Storage from the server.
1. Check the Object Storage IP on the server using the nslookup command
2. Register a rule through the Security Group or Firewall service and apply it to the server.
  - Target address: Object Storage IP confirmed in ①
  - Direction : Outbound
  - Service: TCP 80, 443 (80 when using http / 443 when using https)

Caution

If each service’s status is as follows, granting and revoking access to service resources is possible. If the status is not as listed, previously granted service resources may also be affected.

Virtual Server/GPU Server: Build, Building, Networking, Scheduling, Block_Device_Mapping, Spawning, Deleting, Error and other states
Bare Metal Server/Multi-node GPU Cluster: Running, Starting, Stopping, Stopped
VPC Endpoint: Active
PostgreSQL/MariaDB/MySQL/EPAS/Microsoft SQL Server: Running

Select the server to allow access, and click the Confirm button.
Check the added server in the Object Storage Details page’s Access Control > Allow Service Resources list.

Reference

If you modify the service resource allowance, it may take up to 30 seconds for the changes to be applied.
Service resources are allowed up to a maximum of 150.

Allow access to Cloud Functions service

If access control on the bucket is set to enabled, you can allow the Cloud Functions service to access Object Storage.

To allow access to the Cloud Functions service from Object Storage, follow these steps.

Click the All Services > Storage > Object Storage menu. You will be taken to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
Object Storage List page, click the resource (bucket) for which you want to set access control. You will be taken to the Object Storage Details page.
On the Object Storage Details page, verify that access control is enabled.
- Access Control is Disabled, click the Edit button, then in the Access Control popup, change Access Control to Enabled.
- When access control is enabled, only the Allow IP Access, Allow Service Resources, Allow Cloud Functions Service lists are displayed.
In the Enable Cloud Functions service, click the Edit button. The Edit Cloud Functions service popup opens.
After checking Allow, click the Confirm button.

Reference

Once the access permission settings for the Cloud Functions service are completed, the Cloud Fuctions service can retrieve the Java Runtime executable stored in Object Storage.
In the Cloud Functions service, see Java Runtime 코드 변경하기 for how to load the Java Runtime executable.

Reference

South Korea (kr-south) region constraints

The South Korea (kr-south) region does not provide the Cloud Functions service, so the Allow Cloud Functions Service feature cannot be used.

2.2 - File and Folder Management

If you need to manage tasks such as storing files in the created Object Storage or downloading stored files, you can perform the operations on the Object Storage Details and Folder List pages.

Create new folder

A new folder may need to be created to store new data in the bucket.

To create a new folder in Object Storage, follow these steps.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
On the Object Storage List page, click the resource (bucket) where you want to create a new folder. You will be taken to the Object Storage Details page.
Click the Folder List tab. Navigate to the Folder List page.
Click the New Folder button. The New Folder popup window opens.
Enter the folder name to use, and click the Confirm button. A popup indicating that a new folder has been created will appear.

Caution

Folder names must not contain prohibited special characters. For more details, see Folder Name Creation Rules.
The total path length, including the folder name, file name, and delimiter (/), must be limited to within 1,024 bytes (based on UTF-8 encoding).

After clicking the Confirm button, check the created folder in the Folder List.

Upload File

Reference

South Korea Region 3 (kr-south3) constraints
- File upload and download capabilities are limited through the Samsung Cloud Platform Console.
- Use of the S3 API/CLI via a public URL is restricted.
- However, private URL access is possible through resources (such as Virtual Server) created in the Samsung Cloud Platform Console.
South Korea South 1 (kr-south1), South Korea South 2 (kr-south2) region constraints
- To access the public URL, you must allow a separate firewall configuration.
- You can view the public URL address on the Object Storage details page. Refer to Check Object Storage details.

You can upload a new file or a file you are working on to the bucket. Object Storage Follow the steps below to upload files.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
Object Storage List page, click the resource (bucket) to upload files. You will be taken to the Object Storage Details page.
Click the Folder List tab. Navigate to the Folder List page.
Click the File Upload button. The File Upload popup opens.
After clicking the Attach File button, select the file to upload or drag the file to attach into the popup window.

Caution

You can upload up to three attachment files, each not exceeding 3 GB.
The attached file name must not contain prohibited special characters. For more information, refer to File Name Creation Rules.
The total path length, including the folder name, file name, and separator (/), must be within 1,024 Bytes (based on UTF-8 encoding).
If a duplicate file exists, you cannot upload.

If you have selected all files, click the Upload button.
If the upload was successful, check the file in the folder list.

Download File

Reference

South Korea Region 3 (kr-south3) constraints
- File upload and download capabilities are limited through the Samsung Cloud Platform Console.
- Use of the S3 API/CLI via a public URL is restricted.
- However, private URL access is possible through resources (such as Virtual Server) created in the Samsung Cloud Platform Console.
South Korea South 1 (kr-south1), South Korea South 2 (kr-south2) region restrictions
- To access the public URL, you must allow a separate firewall configuration.
- You can view the public URL address on the Object Storage details page. Refer to Check Object Storage details.

You can download files stored in the bucket. Object Storage Follow these steps to download the file.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
On the Object Storage List page, click the resource (bucket) you want to download. You will be taken to the Object Storage Details page.
Click the Folder List tab. Navigate to the Folder List page.
Click the More > Download button located at the far right of the file. The file download will begin.
Verify that the file download has completed in the browser.

View file information

You can retrieve information about files stored in the bucket. Object Storage Follow the steps below to retrieve file information.

All Services > Storage > Object Storage Click the menu. Navigate to the Service Home page.
Click the Object Storage menu on the Service Home page. You will be taken to the Object Storage List page.
Object Storage List page, click the resource (bucket) that contains the file you want to view information for. You will be taken to the Object Storage Details page.
Click the Folder List tab. You will be taken to the Folder List page.
Click the More > File Info button located at the far right of the file you want to view information for. The File Info popup window will open.

File Information Check detailed file information in the popup window.

Category	Detailed description
filename	File name
Content type	Object type
Total size	File size
Modification date and time	The most recent modification date and time of the file
Permission	Whether to allow Public Access
URL	Provide Public and Private addresses to enable access to file paths via URL Public: Provided to allow access from external internet networks Private: Provides an address accessible from resources created in the same account and region of the Samsung Cloud Platform Console

Table. File information items

Copy file

You can copy a file stored in a bucket to the same location. To copy a file, follow these steps.

Click the Storage > Object Storage menu. Navigate to the Object Storage List page.
Object Storage List page, click the resource (bucket) to copy the file. You will be taken to the Object Storage Details page.
Click the Folder List tab. You will be taken to the Folder List page.
Click the More > Copy File button at the far right of the file to be copied. The Copy File popup window will open.
Enter the filename, then click the OK button. A popup indicating file copying will appear.

Caution

Only files whose full path—including bucket name, folder name, file name, and delimiter (/)—is 1,024 Bytes (based on URL encoding) or less can be copied.
In the Samsung Cloud Platform Console, you can only copy files when the file size is 5 GB or less. If the file size exceeds 5 GB, you can copy it using the S3 API.
You can copy within the same bucket and folder.
If the bucket does not use versioning, a file with the same name in the folder will be overwritten.

After clicking the Confirm button, check the copied file in the Folder List.

Delete files and folders

You can delete files and folders stored in the bucket. Object Storage Follow the steps below to delete files and folders.

Caution

When a folder is deleted, all subfolders and files inside it are also deleted.
When a file is deleted, all versions are deleted at once.
Files with object lock (WORM) enabled cannot be deleted.

Click the All Services > Storage > Object Storage menu. You will be taken to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
Object Storage List page, click the resource (bucket) that contains the file or folder you want to delete. You will be taken to the Object Storage Details page.
Click the Folder List tab. Navigate to the Folder List page.
Click the More > Delete button located at the far right of the file or folder you want to delete. The Delete popup window will open.
- After selecting multiple files or folders using the checkboxes on the left, you can delete them all at once by clicking the Delete button at the top.
Click the Confirm button in the delete popup to complete deletion.
Check that files or folders have been deleted from the Folder List.

Reference

Deleting multiple files and folders simultaneously can take a long time.

2.3 - Version Management

By enabling versioning on a bucket, you can track the history of file modifications when uploading files with the same name. You can also view the file’s version list and download previous versions of the file from the list.

Information

With the version control feature, if you accidentally upload a file and overwrite an existing one, you can locate the previous version using the version list.

Setting up version control

You can enable versioning on the bucket.

Caution

When using S3 FileSystem Backend solutions (e.g., s3fs, objectivefs, etc.), it is recommended not to enable versioning. Enabling versioning may cause performance degradation.

Object Storage To set up versioning, follow the steps below.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
On the Object Storage List page, click the resource (bucket) for which you want to configure versioning. You will be taken to the Object Storage Details page.
On the Object Storage Details page, verify whether Versioning is unused.
If Version control is unused, click the Edit button. The Edit version control popup window opens.
After checking version management as Enabled, click the Confirm button. On the Object Storage Details page, Version Management will be changed to Enabled.

reference

When you configure version control for the first time, it may take some time for changes to be applied.
The time required may vary depending on the size of the bucket. Work performed before the configuration is completed may not have the version applied.

Check version list

From the moment version control is configured, you can view and manage versions of file uploads and modifications.

Information

Version control for file uploads and edits is available from the moment version control is configured.
All files have a version ID. However, before version control is configured, the version ID is null(-), and files uploaded after version control is set up are assigned a generated version ID.
- For example, if you upload a file with the same name to the same location, the file name remains the same, but a new version file with a different version ID appears in the version list.

Object Storage To check the version list of a file, follow these steps.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
Object Storage List page, click the resource (bucket) that contains the file whose version list you want to view. You will be taken to the Object Storage Details page.
Click the Folder List tab. The folder and file list will be displayed.

In the folder and file list, click the More > Version List button located at the far right of the file whose version list you want to view. The Version List popup will open.

Category	Detailed description
filename	File name
Modification date	File modification date and time
Version ID	Version ID assigned to each individual file Before version control is enabled, the version ID of saved files is displayed as null(-) Files saved after version control is enabled are assigned a unique version ID If a file with the same name is uploaded to the same location, a version ID is generated, a versioned file is added, and it can be viewed in the version list
Etag	Object that identifies files, specific version
Size	Version file size
More	Provides version file download and delete functions as additional features File Download: Download the file of the selected version To restore a file to a previous version, download the previous version and re‑upload it Delete: Delete the file of the selected version If all version files are deleted, the original file will also be deleted To retain the original file, at least one version must be kept
Delete	Delete file Enable the button when selecting the checkbox of the version file to delete from the list

Table. Version list popup items

Download version file

Reference

South Korea Region 3 (kr-south3) constraints
- File upload and download capabilities are limited through the Samsung Cloud Platform Console.
- Use of the S3 API/CLI via a public URL is restricted.
- However, private URL access is possible through resources (such as Virtual Server) created in the Samsung Cloud Platform Console.
South Korea South 1 (kr-south1), South Korea South 2 (kr-south2) region restrictions
- To access the public URL, you must allow a separate firewall configuration.
- You can view the public URL address on the Object Storage details page. Refer to Check Object Storage Details.

You can download the version file. To download the version file of a Object Storage file, follow these steps.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
On the Object Storage List page, click the resource (bucket) that contains the version file to download. You will be taken to the Object Storage Details page.
Click the Folder List tab. The folder and file list will be displayed.
In the folder and file list, click the More > Version List button located at the far right of the file for which you want to download the version file. The Version List popup window will open.
Click the More > File Download button located at the far right of the version file. File download will start.
Verify that the file download has completed in the browser.

Reference

When you download a version file from the version list, the filename includes the version ID.

Delete version file

You can delete a file’s version list.

Caution

If you delete all version files, the original file will also be deleted. To avoid deleting the original file, you must keep at least one version.
Version files with object lock (WORM) enabled cannot be deleted.

Object Storage To delete a file’s version list, follow these steps.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
Object Storage List: Click the resource (bucket) that contains the versioned file you want to delete. You will be taken to the Object Storage Details page.
Click the Folder List tab. The folder and file list will be displayed.
In the folder and file list, click the More > Version List button located at the far right of the file whose version list you want to delete. The Version List popup window will open.
Click the More > Delete button at the far right of the version file you want to download. Deletion will be completed.

2.4 - Permission Management

Each file is provided with Private permission by default, and each file can be changed to Public permission through permission settings. Private permission allows file access and download only to users who know the Access Key and Secret Key, whereas Public permission allows anyone worldwide to access and download the file via its Public URL, so caution is required.

Check permission management

You can check the file’s permission settings.

Object Storage Follow the steps below to verify file permissions.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
Object Storage List page, click the resource (bucket) that contains the file whose permissions you want to check. You will be taken to the Object Storage Details page.
Click the Folder List tab. Navigate to the Folder List page.
Click the More > File Info button located at the far right of the file you want to view file information for. The File Info popup window will open.
Check the Permissions in the File Information popup window.
Category Detailed description
Permission Public Access allowed or Public Access not allowed
Table. Permission information description

Category	Detailed description
Permission	Public Access allowed or Public Access not allowed

Allow Public Access

You can set the file’s Public Access permission to Allow. To set the file permissions of Object Storage to allow Public Access, follow these steps.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
Object Storage List page: click the resource (bucket) that contains files to allow Public Access. You will be taken to the Object Storage Details page.
Click the Folder List tab. Navigate to the Folder List page.
Click the More > File Info button located at the far right of the file you want to view information for. The File Info popup window will open.
Check that Permission is in Public Access not allowed state, then click the Confirm button.
Click the More > Permission Management button located at the right end of the file. The Edit Permission Management popup window opens.
Edit Permission Management popup window, check Permission Management’s Allow Public Access, and click the Confirm button. You will be taken to the Folder List page.
Click the More > File Info button at the far right of the file. The File Info popup opens.
Check that Permission is Public Access allowed.

guide

When Public Access is enabled, accessing the file’s Public URL makes the file publicly available and downloadable to anyone worldwide.
Please enable file sharing only when it is absolutely necessary.

2.5 - Replication Policy Management

Replication can be performed on a bucket in a different location or the same location.
You can configure multiple replication policies, and if the source bucket becomes unavailable due to a failure or disaster, you can provide the service through the replica bucket.

Information

The replication feature operates in a 1:N structure, allowing replication within a region or between regions. When performing cross‑region replication, data transfer fees are added.
The replication feature applies only to files uploaded after the replication policy is set.
Deleting the versioned file in the source does not delete the files in the replica bucket.
- Example: When configured from Bucket A → Bucket B, even if the version files in Bucket A are deleted, they remain in Bucket B.
Bidirectional replication can be configured.
- Example: When configured as Bucket A ↔ Bucket B, files uploaded to Bucket A are replicated to Bucket B, and files uploaded to Bucket B are replicated to Bucket A.
The duplicated file is not duplicated.
- Example: When configured as Bucket A → Bucket B → Bucket C, files replicated from Bucket A → Bucket B are not replicated from Bucket B → Bucket C.

Reference

The kr-south region does not provide inter-region Object Storage replication.

Add replication policy

Information

You can configure replication on the created bucket.
To add a replication policy, you must set the version control feature to enabled.
Refer to Configure Version Management for how to configure the version management feature.

To add a replication policy, follow these steps.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page of Object Storage.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
On the Object Storage List page, click the resource to which you want to add a replication policy. Then navigate to the Object Storage Details page.
Click the Clone tab.
Click the Add button. The Add Replication Policy popup opens.
After entering the policy information, click the Confirm button. A popup notifying the creation of a replication policy will appear.

Category	Required or not	Detailed description
Policy Name	Required	Enter the name of the replication policy including English letters, numbers, and special characters (`-._`) within 255 characters
Clone location	Required	Select replication location (region) Other locations can be selected
Replication bucket name	Required	Select the name of the replica bucket If set to be the same as the source bucket name, adding a replication policy is not allowed
target file	Required	Select files to duplicate All: Duplicate all files Prefix: Duplicate files that start with the value entered as a prefix Enter within 1,024 bytes based on UTF-8 encoding (same as file length restriction) Special characters (`%<>#\```^)`
Delete marker duplication	Select	Whether to use delete marker replication

Table. Add replication policy popup items

Click the Confirm button. The replication policy will be added.

Caution

If there is an invalid policy, you cannot add a replication policy.

Example: If a replication bucket has been deleted but its policy remains, you cannot add a replication policy.

Modify Replication Policy

You can modify the replication location, replication bucket name, and target file of the replication policy.

guide

To modify the replication policy, you must set the versioning feature to enabled.
Refer to Configure Version Management for instructions on configuring the versioning feature.

To modify the replication policy, follow these steps.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page of Object Storage.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
On the Object Storage List page, click the resource to edit the replication policy. You will be taken to the Object Storage Details page.
Click the Clone tab.
In the replication policy list, click the More > Edit button of the policy you want to modify. The Edit Replication Policy popup window will open.
After modifying the replication policy information, click the Confirm button. A popup notifying the replication policy modification will appear.

Category	Required?	Detailed description
Clone location	Required	Select the replication location (region) Other locations can be selected
Replication bucket name	Required	Enter the name of the replicated bucket If set to the same as the source bucket name, the replication policy cannot be modified If you set a bucket that is already in use as the replication bucket, the replication policy cannot be modified
target file	Required	Select files to replicate All: Replicate all files Prefix: Replicate files that start with the entered prefix Enter within 1,024 bytes based on UTF-8 encoding (same as file length limit) Special characters (`%<>#\```^\`
Delete marker duplication	Selection	Whether to use delete marker replication

Table. Replication Policy Edit Popup Items

Click the Confirm button. The replication policy update is complete.

Caution

If there is an invalid policy, you cannot add a replication policy.

Example: If a replication bucket has been deleted but its policy remains, you cannot add a replication policy.

Changing Replication Policy Status

You can enable or disable the replication policy to change whether it is executed.

To change the replication policy status, follow the steps below.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page of Object Storage.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
On the Object Storage List page, click the resource whose replication policy status you want to change. You will be taken to the Object Storage Details page.
Click the Clone tab.
From the replication policy list, click the More > Enable or More > Disable button for the policy whose status you want to change. A popup will appear notifying you of the replication policy status change.
- Enabled: Performs replication according to the replication policy.
- Disabled: Stops replication.
Click the Confirm button. The status of the replication policy will change.

Delete replication policy

You can delete unused replication policies.

To modify the replication policy, follow these steps.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page of Object Storage.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
Object Storage List page, click the resource to delete the replication policy. Go to the Object Storage Details page.
Click the Clone tab.
In the replication policy list, click the More > Delete button for the policy you want to modify. A popup notifying you of the replication policy deletion will appear.
Click the Confirm button. The replication policy will be deleted.

Caution

If you change the versioning setting of the source and replica buckets, replication will not function properly.
- If versioning on the source bucket is set to disabled, replication is not performed. Setting it to enabled will replicate files uploaded after the setting.
- If you set versioning of the replica bucket to disabled, replication will be performed but versioning is not possible. If you set it back to enabled, versioning will apply from the point of configuration onward.
If you delete the source bucket, the configured replication policy will also be deleted.
If you delete the replica bucket, the replication policy configured on the source bucket is retained.
- If you recreate a replication bucket with the same bucket name as a deleted replication bucket, replication will be performed to that bucket.

Activating ServiceWatch Replication Metrics

By default, Object Storage is integrated with ServiceWatch and basic monitoring. To link Object Storage replication metrics to ServiceWatch, you must enable ServiceWatch replication metric. For more information about ServiceWatch, see ServiceWatch Overview.

Caution

Basic monitoring is provided at no cost, but enabling replication metrics as a detailed monitoring item incurs additional fees.
The ServiceWatch replication metric, when configured once per bucket, applies to all replication policies of that bucket.

To enable the ServiceWatch replication metric for Object Storage, follow these steps.

Click the All Services > Storage > Object Storage menu. You will be taken to the Service Home page of Object Storage.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage List page.
On the Object Storage List page, click the resource to enable ServiceWatch replication metrics. Then go to the Object Storage Details page.
Click the Replication tab on the Object Storage Details page. Proceed to the Replication tab.
Click the Edit button for the ServiceWatch replication metric. You will be taken to the Edit ServiceWatch replication metric popup.
ServiceWatch Replication Metric Edit In the popup window, after selecting Enable, review the instructions and click the Confirm button.
In the Replication tab, view the ServiceWatch replication metric items.

Disabling ServiceWatch Replication Metrics

Caution

Disabling the replication metric is required for cost efficiency. Keep the replication metric enabled only when absolutely necessary, and disable the replication metric for the rest.

To disable the ServiceWatch replication metric for Object Storage, follow these steps.

Click the All Services > Storage > Object Storage menu. Navigate to the Service Home page of Object Storage.
On the Service Home page, click the Object Storage menu. You will be taken to the Object Storage list page.
On the Object Storage List page, click the resource to disable ServiceWatch detailed monitoring. Navigate to the Object Storage Details page.
On the Object Storage Details page, click the Replication tab. Navigate to the Replication tab.
Click the Edit button for the ServiceWatch replication metric. You will be taken to the Edit ServiceWatch replication metric popup.
ServiceWatch Replication Metric Edit In the popup window, after deselecting Enable, review the guidance text and click the Confirm button.
In the Replication tab, check the ServiceWatch replication metric items.

3 - Release Note

Object Storage

2026.03.19

FEATURE ServiceWatch service integration provision

ServiceWatch service integration provision
- You can monitor data through the ServiceWatch service.

2025.10.23

FEATURE Add cloning and file copy features and integrate with Cloud Functions service

The replication feature of Object Storage has been added.
- You can perform replication to buckets in a different location or the same location, and you can configure multiple replication policies.
File copy feature has been added.
- You can copy the desired file within the same bucket and folder.
The Cloud Functions service has been added to access control.
- You can upload a Java Runtime executable to Cloud Functions.

2025.10.23

FEATURE Add cloning and file copy functionality and integrate with Cloud Functions service

The replication feature of Object Storage has been added.
- You can perform replication to buckets in a different location or the same location, and you can configure multiple replication policies.
File copy feature has been added.
- You can copy the desired file within the same bucket and folder.
The Cloud Functions service has been added to access control.
- You can upload a Java Runtime executable to Cloud Functions.

2025.07.01

FEATURE Add server resource access and Presigned URL feature

A server resource target product has been added to Object Storage access control.
- Multi-node GPU Cluster, PostgreSQL, MariaDB, MySQL, EPAS, Microsoft SQL Server
Presigned URL functionality has been added.
- You can download the file using a Presigned URL for the configured duration.
You can perform Copyobject on encrypted files.

2025.04.28

FEATURE Add Amazon S3 version

Additional versions of the Amazon S3 SDK and Amazon S3 CLI are now available.

2025.02.27

FEATURE Add VPC Endpoint connection feature

Object Storage feature change
- You can use Object Storage from external networks via a VPC Endpoint connection.
Samsung Cloud Platform Common Feature Changes
- Account, IAM, Service Home, tags, and other common CX changes have been applied.

2024.10.01

NEW Object Storage service official version release

We have launched an object storage service that simplifies data storage and retrieval.

2024.07.02

NEW Beta version release

We have launched Object Storage, a service that provides space (buckets) for economically storing large volumes of data.

Object Storage

1 - Overview

Service Overview

Features

Configuration diagram

Provided Features

Component

Authentication key

Bucket

Folder

File

URL

Constraints

Preceding Service

1.1 - Amazon S3 Usage Guide

Amazon S3 API

Amazon S3 CLI

Amazon S3 SDK for Java

1.2 - Monitoring Metrics

Object Storage Monitoring Metrics

1.3 - ServiceWatch Metrics

Basic Metrics

Replication Metric

2 - How-to guides

Create authentication key

Create Object Storage

Check detailed information of Object Storage

Detailed Information

Folder list

Replication

tag

Job History

Object Storage Encryption Configuration

Terminate Object Storage

2.1 - Access Control

Setting up Access Control

Allow public IP access

Allow access to service resources

Allow access to Cloud Functions service

2.2 - File and Folder Management

Create new folder

Upload File

Download File

View file information

Copy file

Delete files and folders

2.3 - Version Management

Setting up version control

Check version list

Download version file

Delete version file

2.4 - Permission Management

Check permission management

Allow Public Access

2.5 - Replication Policy Management

Add replication policy

Modify Replication Policy

Changing Replication Policy Status

Delete replication policy

Activating ServiceWatch Replication Metrics

Disabling ServiceWatch Replication Metrics

3 - Release Note

Object Storage