Orchesto is a multi-cloud Data Management Solution for cloud-native and stateful applications. It is designed from the ground up as a lightweight and unified data management platform for applications and users, with data security, portability and governance built into the design. The Orchesto use-case is multi-cloud data storage or the performing of operations onto data, be it on premise or in the cloud, using either cloud-native or more traditional, stateful applications.
Applications will access Orchesto over standardised S3 and local file system. Backends include S3, Swift and file system.
Download and Start Service
Supported platforms and architectures
The following platforms and architectures are supported by Orchesto:
|Apple macOS||64-bit Intel|
Start the service
To use Orchesto the first time, you need to download the software and have accepted the [End-User License Agreement (EULA)].
Once the software has been downloaded, you will need to install the software and start the service. The initial setup is done from the command line and different deployment options exist. Please see Appendix Installation Guide for detailed instructions.
Following a successful Orchesto service start, you will see the Orchesto endpoints and some configuration choices selectable when launching the server.
Once started, there are two ways you can connect to Orchesto:
- Management Console - Browser-based user interface to manage Orchesto
- Command Line Interface
Either service can be accessed via any of the available endpoints.
Setup using the browser
Once the Orchesto service has been started, the management console is accessible via your web browser:
Replace 127.0.0.1 with the IP address that works for you.
The first time you visit the management console, you see the welcome page with the admin access keys. This security credential allows you to use and manage the Orchesto service, as well as create new security credentials.
IMPORTANT Make sure you store the admin access keys in a secure location. Then, select Continue to access the dashboard
Regular access keys allow you to use and manage the Orchesto service. However, only the first security credential that is stored in the server, the admin access keys, is granted special administrative privileges that allow you to create and manage all other security credentials. By using Orchesto IAM policies, it is also possible to grant subsequent IAM users granular rights. This allows for creation of tightly controlled administrator and user roles. For more information on IAM Policies, please see Appendix Using policy definitions.
The dashboard shows the current status of the server, showcasing among other things, number of connected backends providers and managed buckets.
On the left-hand side of the management console is the sidebar, which provides access to all principle management functions such as: Dashboard, Backends, Buckets, Sync Jobs, IAM, ZIDA, Logs, API Documentation and Orchesto System (Settings).
To connect a new storage provider, first access the backend management section by selecting Backends in the sidebar. Following this, select Add Backend to configure connection to a new storage provider.
On the Backends page, you can connect to any number of storage providers, provided that you have access to the account credentials for the respective providers you wish to add.
Orchesto supports the addition of backends over S3, Swift and Azure storage protocols. 15+ common Public Cloud Service Providers are pre-integrated to Orchesto and Custom Private Clouds are supported as well.
To access the virtual bucket and object browser, select Buckets in the sidebar. You will be presented with a management console where virtual buckets can be added from regular backends and from zIDA created regions.
Orchesto supports several bucket-level operations, ranging from basic features such as creation and removal of buckets to more advanced operations such as live synchronisation / migration of buckets, gateway-side encryption, IAM bucket policies and object versioning.
You can connect to any number of storage providers and make any combination of buckets available through the gateway.
Orchesto is compatible with the Amazon S3 API, so you can use any Amazon S3 compatible client to upload and download data. An application can connect to Orchesto directly when running in a more static, traditionally oriented environment or via the Orchesto-CSI Driver. The latter is providing support in situations where an application and Orchesto are being managed by a container orchestrator (e.g., Kubernetes).
In a traditional environment, you can get started with Orchesto by simply configuring the application with the Orchesto endpoint and user credentials.
The Orchesto endpoint is the same as the management console accessed via the web browser:
For example, the AWS Command Line Interface (CLI) can be configured with your Orchesto credentials in the following way:
$ aws configure AWS Access Key ID [None]: EUMOATRNYXRBLOKNXYD8 AWS Secret Access Key [None]: KTRUdnMAskpCc7ph/8Om0muMYYcRcxT4H7Kel3ZU Default region name [None]: Default output format [None]:
Then, include the Orchesto endpoint via the
--endpoint-url option when you use the AWS CLI.
$ aws s3 ls --endpoint-url http://127.0.0.1:9090 2019-11-13 15:18:55 hkwasabi 2019-11-06 14:51:09 my-sthlm-bucket1 2019-11-15 11:22:47 sync-source 2019-11-05 17:03:28 test123 2019-11-07 16:16:43 test20191107