How to obtain my Access-keys

When using Sufy object storage service, AccessKey and SecretKey are important credentials for authentication. This article will explain in detail how to obtain these keys.

Visit Sufy's official website (https://www.sufy.com)
Click the "Login" button in the top right corner

Sufy website login interface

Access the Key Management Page

There are two ways to access the key management page:

Method 1: Through Top Navigation

After logging in, click "Console" in the top navigation bar
Select "Access Control" from the left menu
Click "Key Management"

Accessing key management through navigation menu

Create New Access Keys

You can create a maximum of 2 AccessKey/SecretKey pairs. If you have already reached this limit, you'll need to disable and delete existing keys before creating new ones.

Creating new access keys

View Key Information

The SecretKey is hidden by default and requires security verification to view. Click [SK] to trigger the security confirmation window. After security confirmation, the SecretKey will be displayed.

Security confirmation popup

Displaying SecretKey (SecretKey shown in screenshot has been deactivated)

Security Recommendations

Rotate Keys Regularly
- Recommended to change keys every 3-6 months
- Ensure all applications using the key are updated when changing
Principle of Least Privilege
- Create different keys for different purposes
- Promptly retire unused keys
Key Protection
- Never share your Secret Key
- Don't hardcode keys in your code
- Use environment variables or configuration files to store keys

Frequently Asked Questions

What if I forgot to save my Secret Key?
- Perform secondary verification in the management interface to view it again
What should I do if my keys are compromised?
- Immediately disable the key in the console
- Create new key pairs
- Update all applications using the old keys
- Review account security settings
How can I verify if my keys are working?
- Use Sufy's key testing tool
- Or verify using API test endpoints