Access Key
An Access Key is an authentication key pair (Access Key ID and Secret Access Key) used to connect to LANIT Cloud's Simple Storage service via the S3-compatible API. You need an Access Key when using tools such as AWS CLI, S3 Browser, Rclone, or when integrating directly into an application.
Access Key Management Location
Access Keys are managed under Simple Storage → Access Keys on the LANIT Cloud Portal.
Create a New Access Key
Step 1: In the left menu, select Simple Storage → Access Keys.
Step 2: Click Create in the top-right corner.
Step 3: Select the Sub user (main account or sub-account) for this key.
Step 4: Click Save to create the key.
Step 5: The system displays the new Access Key:
| Info | Description |
|---|---|
| Access Key ID | The public identifier, used like a "username" during authentication |
| Secret Access Key | The secret key, shown only once at creation time |
Save the Secret Access Key immediately. After closing this window, the Secret Access Key cannot be retrieved. If lost, you must create a new Access Key.
Step 6: Copy and save both the Access Key ID and Secret Access Key in a safe place (password manager, vault, etc.).
S3 Connection Details
Use the following information to configure S3-compatible tools:
| Parameter | Value |
|---|---|
| Endpoint | https://s3.lanit.com.vn |
| Region | hn (Hanoi) |
| Access Key ID | From the portal |
| Secret Access Key | From the portal |
| Path Style | Enabled (use path-style URLs) |
View the Access Key List
On the Access Keys page, you can see all created keys with:
- Name / Label: Description name set at creation
- Access Key ID: The identifier (displayed)
- Creation Date
- Status: Active / Disabled
Disable an Access Key
If you suspect a key has been compromised or you no longer need it temporarily, disable it without deleting:
Step 1: Click ⋮ next to the Access Key, then select Disable.
Step 2: Confirm. The key changes to Disabled — requests using this key are rejected.
To re-enable: click ⋮ and select Enable.
Delete an Access Key
Step 1: Click ⋮ next to the Access Key, then select Delete.
Step 2: Confirm deletion. The key is permanently deleted and cannot be recovered.
Deleting an Access Key disconnects all applications currently using it. Update your application configuration before deleting.
Security Best Practices
- Create a separate key for each application/service — don't share a single key for multiple purposes
- Limit permissions by combining with Bucket Policy to allow a key access only to the necessary buckets
- Rotate periodically — create a new key and delete the old one on a regular cycle (every 3–6 months)
- Never commit keys to source code — use environment variables or secret management tools
- Disable immediately when a key is suspected to be compromised
Quick Configuration Examples
AWS CLI:
aws configure --profile lanit
# AWS Access Key ID: <your-access-key-id>
# AWS Secret Access Key: <your-secret-access-key>
# Default region: hn
# Default output format: json
Rclone:
[lanit-s3]
type = s3
provider = Other
access_key_id = <your-access-key-id>
secret_access_key = <your-secret-access-key>
endpoint = https://s3.lanit.com.vn