To add your Amazon S3 deployment package store using dsconfig:

  • Run dsconfig with the create-deployment-package-store option:
    • Create a store with an unsigned deployment package.
      dsconfig create-deployment-package-store \
        --store-name "<store-name>" \
        --type s3  \
        --set "poll-interval: <poll-interval>" \
        --set "s3-bucket-name:<bucket-name>"  \
        --set "s3-bucket-prefix:<bucket-prefix>"  \
        --set "s3-server-endpoint:<server-endpoint>"  \
        --set "s3-region-name:<region-name>"  \
        --set "s3-access-key-id:<access-key-id>"  \
        --set "s3-secret-key:<secret-key>"
    • Create a store with deployment-package-security-level set to signed.
      dsconfig create-deployment-package-store \
        --store-name "<store-name>"  \
        --type s3  \
        --set "poll-interval: <poll-interval>" \
        --set deployment-package-security-level:signed  \
        --set "deployment-package-trust-store:<trust-store-provider-name>"  \
        --set "deployment-package-verification-key-nickname:<key-nickname>"  \
        --set "s3-bucket-name:<bucket-name>"  \
        --set "s3-bucket-prefix:<bucket-prefix>"  \
        --set "s3-server-endpoint:<server-endpoint>"  \
        --set "s3-region-name:<region-name>"  \
        --set "s3-access-key-id:<access-key-id>"  \
        --set "s3-secret-key:<secret-key>"

Configure the PingAuthorize server to use embedded PDP mode with your deployment package store.