AWS Connection Details

To establish the connection, you must specify the following configurations in the AWS Connector dialog.

The AWS Connector dialog contains the following fields:

Field Description
Name

Specify a unique name for the connection that you are creating. This is displayed in the connection drop-down list for all the activities.

Description A short description of the connection.
Custom Endpoint

(Optional) To enable the AWS connection to an AWS or AWS compatible service running at the URL specified in the Endpoint field, set this field to True.

This field is not supported in TIBCO Flogo® Connector for Amazon Glacier.

Endpoint This field is available only when Custom Endpoint is set to True.

Enter the service endpoint URL in the following format: <protocol>://<host>:<port>. For example, you can configure a MinIO cloud storage server endpoint.

Region Region for AWS connection.
Authentication Type

Select one of the following authentication types as required:

AWS Credentials: Use this authentication to connect to AWS resources using access key, secret key, and assumed role.
Default Credentials: Use this authentication to use a role configured AWS resource such as EC2, ECS, or EKS without configuring the AWS credentials. Credentials are loaded using the AWS default credentials provider chain.
Note: To use Default Credentials as the Authentication Type in TIBCO Flogo® Connector for Amazon SQS and AWS Lambda, create an AWS connection using the Authentication Type as AWS Credentials and override AWS Credentials to Default Credentials at runtime.
Access key ID Access key ID of the AWS account (from the Security Credentials field of IAM Management Console).

For more information, see the AWS documentation.

Secret access key Enter the secret access key. This is the access key ID that is associated with your AWS account.

For more information, see the AWS documentation.

Session token (Optional) Enter session token if you are using temporary security credentials. Temporary credentials expire after a specified interval. For more information, see the AWS documentation.
Use Assume Role This enables you to assume a role from another AWS account. By default, it is set to False (indicating that you cannot assume a role from another AWS account).

When set to True, provide the following information:

  • Role ARN - Amazon Resource Name of the role to be assumed
  • Role Session Name - Any string used to identify the assumed role session
  • External ID - A unique identifier that might be required when you assume a role in another account
  • Expiration Duration - The duration in seconds of the role session. The value can range from 900 seconds (15 minutes) to the maximum session duration setting that you specify for the role

For more information, see the AWS documentation.