IAM role for S3 Repository
Hi,
We are using Pega 8.5.2 hosted on EKS. We have IAM role authorized for S3 access.
When we configure S3 as a repository, it asks for AccessKeyID and secret which are applicable for IAM user. We verified that s3 repo can be configured using IAM user. But we have a key rotation policy of 90 days for IAM user access key and secret.
Questions:
- Is there a way to configure S3 repo using IAM instance profile role?
- If we use IAM user Access Key and Secret, is there a programmatic way to rotate these credentials in Pega every 90 days or so?
- Any other way to use S3 to store attachments?