IT Solutions Technology Blog

   MinIO – supports a complete object locking framework offering both Legal Hold and Retention with Governance and Compliance modes. Object Locking functionality is a requirement for many regulated industries from financial services to healthcare. Lifecycle management is an increasingly critical element in the data ecosystem. Data is the primary asset in most organizations at this point – more so than the physical assets we normally associate with large enterprises – trains, planes, automobiles or oil rigs. Protecting this data and managing how long to protect it are complex challenges. MinIO now offers the complete suite of lifecycle management capabilities. This includes versioning, object locking and the various derivative components. Every use case is different and our goal is to create software and documentation that allow our community to implement these features with confidence

Governance Mode

When setting a retention period for your objects or buckets Governance mode is used when the goal is to protect objects from being deleted by standard users having said that there are users that will retain the permissions required to modify the retention settings or delete the objects those users will need the s3:BypassGovernanceRetention permission as well as the DeleteObject permission

$ ./mc mb myminio/bucket-worm –with-lock
Bucket created successfully `myminio/bucket-worm`

$ ./mc mb myminio/bucket-governance –with-lock
Bucket created successfully `myminio/bucket-governance`

$ ./mc retention set –default governance 7d myminio/bucket-governance
GOVERNANCE mode is enabled for 7DAYS

Compliance Mode

Compliance mode is more restrictive it cannot be undone within the retention period as a result the Compliance mode should be used when you are certain that you do not want anyone including the root user to be able to delete the objects during its retention period

$ ./mc mb myminio/bucket-compliance –with-lock
Bucket created successfully `myminio/bucket-compliance`

$ ./mc retention set –default compliance 7d myminio/bucket-compliance
COMPLIANCE mode is enabled for 7DAYS

This entry was posted on Donnerstag, Mai 27th, 2021 at 12:46 and is filed under Administration, MinIO S3 Storage. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.