Posted On: Mar 14, 2023
Amazon S3 Multi-Region Access Points now support datasets that are replicated across multiple AWS accounts. Cross-account Multi-Region Access Points simplify object storage access for applications that span both AWS Regions and accounts, avoiding the need for complex request routing logic in your applications. They provide a single global endpoint for your multi-region applications, and dynamically route S3 requests based on policies that you define. This helps you to more easily implement multi-region resilience, latency-based routing, and active-passive failover, even when data is stored in multiple accounts.
Many customers use S3 Replication to replicate data to a bucket in a different AWS account, providing additional protection against accidental or unauthorized data deletion. S3 Multi-Region Access Points now support these multi-account configurations. To get started, first set up cross-account S3 Replication. This will automatically maintain a replica of your data in one or more AWS Regions. Second, create a Multi-Region Access Point. The easiest way to do this is through the S3 console, which provides a step-by-step setup process, as well as an overview of your replication configuration and metrics. Finally, update the bucket policy for any bucket that is in a different AWS Account than your Multi-Region Access Point to allow retrieval requests.