You may create objects whose sole purpose is organizing a bucket. These objects end with the / character. Versioning is often not of value for these types of objects that have no data. For example, an object at ALIAS/team-bucket/reports may serve as an organization path only and not be a data object. Instead, it contains objects under it, such as ALIAS/team-bucket/reports/2025/june.csv. You may exclude folder objects to prevent ALIAS/team-bucket/reports from being versioned while allowing all objects under it to be versioned.

The procedure on this page creates a new object lifecycle management rule that transition objects from an AIStor bucket to a remote storage tier on the Google Cloud Storage (GCS) backend. This procedure supports use cases like moving aged data to low-cost public cloud storage solutions after a certain time period or calendar date. Requirements Install and configure mc This procedure uses mc for performing operations on the AIStor cluster. Install mc on a machine with network access to both source and destination clusters. See the mc Installation Quickstart for instructions on downloading and installing mc.

Use the following checklist when planning the security configuration for a production, distributed AIStor Server. Required steps Step ☐ Define group policies either on AIStor or the selected 3rd party Identity Provider (LDAP/Active Directory or OpenID Connect). ☐ Define individual access policies on AIStor or the selected 3rd party Identity Provider. ☐ Configure AIStor to use the selected 3rd party Identity Provider. ☐ Grant firewall access for TCP traffic to the Object Store S3 API Listen Port (Default: 9000). ☐ Grant firewall access for TCP traffic to the AIStor Server console port (Recommended Default: 9443). Encryption-at-Rest AIStor Object Store supports Server-Side Encryption using AIStor Key Manager:

The AIStor Identity Management Plugin provides a REST interface for offloading authentication to an external identity manager with a webhook service. Client applications can use the AssumeRoleWithCustomToken STS API extension to generate access tokens for AIStor. AIStor verifies this token by making a POST request to the configured plugin endpoint and uses the returned response to determine the authentication status of the client. Configuration settings You can configure the AIStor Identity Management Plugin with the following environment variables or configuration settings:

The mc admin accesskey info command returns a description of the specified access key(s). The description output includes the following details, as available: Access Key Parent user of the specified access key Access key status (on or off) Policy or policies Comment Expiration Syntax Example The following command returns information on the specified access key:

AIStor supports expanding an existing distributed deployment by adding a new Server Pool. Each pool expands the total available storage capacity of the cluster. Expansion does not provide Business Continuity/Disaster Recovery (BC/DR)-grade protections. While each pool is an independent set of servers with distinct erasure sets for availability, the complete loss of one pool results in MinIO stopping I/O for all pools in the deployment. Similarly, an erasure set which loses quorum in one pool represents data loss of objects stored in that set, regardless of the number of other erasure sets or pools.

The mc encrypt info command displays the default bucket encryption configuration. Syntax Example The following command displays the default encryption configuration for a bucket:

Description The mc batch commands allow you to run one or more job tasks on an AIStor deployment. Subcommands mc batch includes the following subcommands:

Syntax Example The following command lists all anonymous links for the mydata bucket on the myaistor AIStor deployment: mc anonymous links myaistor/mydata Syntax The command has the following syntax:

The mc batch list command outputs a list of the batch jobs currently in progress on a deployment. Syntax Example The following command outputs a list of all jobs currently in progress on the myaistor alias.