How do I generate storage access keys?

Generate an access key from the Access Keys page in the CoreWeave Cloud Console. You can create either a permanent key (does not expire, requires manual rotation) or a temporary key (expires after a set duration, up to 12 hours). Each key is a pair of an access key ID and a secret key. Capture the secret value when it is shown in the create response and store it in a secrets manager. Creating an access key requires either the Object Storage Admin IAM role or the cwobject:CreateAccessKey action granted through an organization access policy. For production workloads, use Workload Identity Federation instead of Cloud Console keys. WIF issues short-lived keys from your identity provider, so credentials never need to be stored or rotated. For full setup steps, see Create access keys.

Administrator Authentication & Access