A bucket is a container for objects stored in OSS. Before you upload objects to OSS, you must create a bucket.
- When you create a bucket, you are charged only for the storage of objects in the bucket and the traffic generated when objects are accessed. For more information, see Overview.
- After a bucket is created, you cannot change its name or region.
- The capacity of the bucket is scalable. You do not need to purchase capacity in advance.
For more information about buckets, see Create buckets.
- Log on to the OSS console.
- In the left-side navigation pane, click Buckets. On the Buckets page, click Create Bucket. You can also click Overview. In the upper-right corner, click Create Bucket.
- In the Create Bucket panel, configure parameters as described in the following table.
Parameter Required Description Bucket Name Yes Set the name of the bucket based on the following naming conventions:
- The bucket name must be globally unique in Alibaba Cloud OSS.
- The name can contain only lowercase letters, digits, and hyphens (-).
- The name must start and end with a lowercase letter or digit.
- The name must be 3 to 63 bytes in length.
Region Yes Select the region for the bucket.
To access OSS from an ECS instance over the internal network, select the region in which the ECS instance is located. For more information, see OSS domain names.Note If the bucket is located in mainland China, you must complete real-name registration by submitting your relevant information on the Real-name Registration page.
Storage Class Yes Select the storage class for the bucket.
- Standard: provides highly reliable, highly available, and high-performance object storage services that can handle frequent data access. Standard is suitable to store images for social networking and sharing applications and data for audio and video applications, large websites, and big data analytics.
- IA: provides highly durable object storage services at low costs. Objects of the IA storage class have a minimum storage period of 30 days and a minimum billable size of 64 KB. You can access objects of the IA storage class in real time. You are charged for the data retrieval. IA applies to scenarios where stored data is infrequently accessed. Objects that are accessed once to twice a month fall into this category.
- Archive: provides highly durable object storage services at costs lower than Standard and IA. Objects of the Archive storage class have a minimum storage period of 60 days and a minimum billable size of 64 KB. You must restore an object of the Archive storage class before you can access it. The restoration takes about one minute, and you are charged for the data retrieval. Archive is suitable for data that you want to store for a long period of time such as archival data, medical images, scientific materials, and video footage.
- Cold Archive: provides highly durable object storage services at the lowest cost of the four storage
classes. Objects of the Cold Archive storage class have a minimum storage period of
180 days and a minimum billable size of 64 KB. You must restore an object of the Cold
Archive storage class before you can access it. The time required to restore a Cold
Archive object depends on the object size and the restore mode. You are charged for
the data retrieval when you restore a Cold Archive object. Cold Archive is suitable
to store extremely cold data for an ultra-long period of time. Such data includes
data that must be retained for an extended period of time due to compliance requirements,
raw data that is accumulated over an extended period of time in the big data and AI
fields, retained media resources in the film and television industries, and archived
videos from the online education industry.
Note Cold Archive is in public preview in the following regions: China (Qingdao), China (Beijing), China (Zhangjiakou), China (Hangzhou), China (Shanghai), China (Shenzhen), China (Chengdu), China (Hong Kong), Australia (Sydney), Singapore, US (Silicon Valley), Germany (Frankfurt), Malaysia (Kuala Lumpur), Indonesia (Jakarta), India (Mumbai), and UAE (Dubai).Contact technical support to apply for a trial.
For more information about storage classes, see Overview.
Zone-redundant Storage No The redundancy option for the bucket.
- Enable: After this feature is enabled, OSS data is stored in zone-redundant storage (ZRS)
mode. ZRS uses the multi-zone mechanism to distribute user data across three zones
within the same region. Even if a zone becomes unavailable due to unexpected events
such as power outages and fires, the data can still be accessed.
Notice ZRS is supported in the following regions: China (Shenzhen), China (Beijing), China (Hangzhou), China (Shanghai), China (Hong Kong), and Singapore. This feature incurs extra costs and cannot be disabled after it is enabled. Exercise caution when you enable this feature.
For more information about ZRS, see ZRS.
- Disable: After ZRS is disabled, the redundancy type of the objects in the bucket is locally redundant storage (LRS). LRS stores the copies of each object across different devices within the same zone. This way, OSS ensures data reliability and availability when hardware failures occur.
Versioning No Select whether to enable versioning.
- Enable: When versioning is enabled for a bucket, an object that is overwritten or deleted is saved as a previous version of the object. Versioning allows you to recover objects in a bucket to a previous version, and protects your data from being accidentally overwritten or deleted. For more information, see Overview.
- Disable: If versioning is disabled, the overwritten or deleted data is not saved.
Access Control List (ACL) Yes Select the bucket ACL.
- Private: Only the bucket owner can perform read and write operations on objects in the bucket. Other users cannot access the objects in the bucket.
- Public Read: Only the bucket owner can perform write operations on objects in the bucket. Other
users, including anonymous users, can perform only read operations on the objects
in the bucket.
Warning All Internet users can access objects in the bucket. This may result in unexpected access to the data in your bucket and an increase in your fees. Exercise caution when you set your bucket ACL to Public Read.
- Public Read/Write: All users, including anonymous users, can perform read and write operations on the
objects in the bucket.
Warning All Internet users can access objects in the bucket and write data to the bucket. This may result in unexpected access to the data in your bucket and an increase in your fees. If a user uploads prohibited data or information, your legitimate interests and rights may be infringed. Therefore, we recommend that you do not set your bucket ACL to Public Read/Write except in special cases.
Encryption Method No Select whether to enable server-side encryption for the bucket.
- Encryption Method: Select an encryption method for the object.
- None: disables server-side encryption.
- OSS-Managed: uses keys managed by OSS for encryption. OSS uses data keys to encrypt objects and manages the data keys. In addition, OSS uses master keys that are regularly rotated to encrypt data keys.
- KMS: uses the default CMK stored in KMS or a specified CMK ID to encrypt and decrypt data. For more information about KMS-based encryption, see Implement server-side encryption with CMKs stored in KMS (SSE-KMS).
- Encryption algorithm:Only AES-256 is supported.
- CMK: You can configure this parameter if you select KMS in the Encryption Method section. You can configure the following parameters for a CMK:
- alias/acs/oss: The default CMK stored in KMS is used to encrypt different objects and decrypt the objects when they are downloaded.
- CMK ID: The keys generated by a specified CMK are used to encrypt different objects and the specified CMK ID is recorded in the metadata of the encrypted object. Objects are decrypted when they are downloaded by users who are granted decryption permissions. Before you specify a CMK ID, you must create a normal key or an external key in the same region as the bucket in the KMS console.
Real-time Log Query No If you want to query OSS access logs for the last seven days free of charge, click Enable.
For more information about real-time log query, see Real-time log query.
If you do not need to query real-time logs, keep the default configuration, which is Disable.
Scheduled Backup No If you want to back up your OSS data on a regular basis, click Enable. OSS automatically creates a backup plan to back up data once a day. Hybrid Backup Recovery (HBR) stores the backup files for one week.Notice If HBR is not activated or HBR is not authorized to access OSS, scheduled backup plans cannot be created. For more information, see Configure scheduled backup.
If you do not need to back up your OSS data on a regular basis, keep the default configuration, which is Disable.
Hierarchical Namespace No If you want to rename directories or objects in the bucket, expand Advanced Settings and then set this parameter to Enable.Notice You can enable the hierarchical namespace feature for a bucket only when you create the bucket. The hierarchical namespace feature cannot be disabled after it is enabled for a bucket. Part of OSS features are not supported. For more information about a list of features that are not supported by the hierarchical namespace feature, see Hierarchical namespace.
- Click OK