From 90eff80da21045384b70817588d696173473ff53 Mon Sep 17 00:00:00 2001
From: Laura Coursen <lecoursen@github.com>
Date: Tue, 28 Jun 2022 18:31:55 +0100
Subject: [PATCH] OIDC for audit log streaming to S3 (#28560)

---
 .../audit-log-streaming-s3-access-keys.png    | Bin 0 -> 6820 bytes
 .../audit-log-streaming-s3-oidc.png           | Bin 0 -> 6735 bytes
 ...aming-the-audit-log-for-your-enterprise.md |  82 +++++++++++++++---
 data/features/streaming-oidc-s3.yml           |   4 +
 .../audit_log/streaming-check-s3-endpoint.md  |   3 +
 .../audit_log/streaming-choose-s3.md          |   3 +
 .../navigate-to-log-streaming-tab.md          |   2 +-
 7 files changed, 80 insertions(+), 14 deletions(-)
 create mode 100644 assets/images/help/enterprises/audit-log-streaming-s3-access-keys.png
 create mode 100644 assets/images/help/enterprises/audit-log-streaming-s3-oidc.png
 create mode 100644 data/features/streaming-oidc-s3.yml
 create mode 100644 data/reusables/audit_log/streaming-check-s3-endpoint.md
 create mode 100644 data/reusables/audit_log/streaming-choose-s3.md

diff --git a/assets/images/help/enterprises/audit-log-streaming-s3-access-keys.png b/assets/images/help/enterprises/audit-log-streaming-s3-access-keys.png
new file mode 100644
index 0000000000000000000000000000000000000000..4b3ab8ad8d11d44ece3dcea2cb10cf3e1d111a6e
GIT binary patch
literal 6820
zcmb_>XIN8Bw>BMu(jvXb1R_!e6cG>zEuo7FC{+Pz(t8UCp-Bt9gH%NVNbf~JND%40
zDn*)rAQ0&%JkRx>?>+y&Yfo9T_L`YBduH!z-S>{v)mEdSW~U}1BBDXSmGy{-h(QF|
zoQi@_>N$45B2>g~dTKDD@&V2bLPOcg5b;V&i|95%rXnH^w<RLGG9hGkLM9?2eMd}0
zN~npibni(1bC($Oj`Tk=k@=Nj)*CfeLMK{;vf>l(neFUwH)EVj&*7!vN5SOnDvhUg
zrJR<fj3y&E>N?A3DMd|*eOAv1(hs5J6`7NrG&dqr5=CysU|t{~7!skpqOg+X1`+T2
zd(OW8zW(d{7m`9{)K2NcUnnW3g-oZmjh%E8BsM)QEv*H1jBX{lapMLU^q=DYtC(nl
zfa&Bu^w7zXbs5Z&^D8=M%}sOW$~G|#%-P1Crl-BO2im>1^PF_DY@Dd`1VyEm;8;YP
z&ne>?au(WB7d%_20o>9^^^@TZhAz+6+(=vsH18XcpQoojf7E7QUtjSI8!IQU6W2FD
zgVRw*oM$KK)*$Dw{hm;5z6Kl)=MW$d7EKgZgNafP^?l5s2hL#bj*ZU?PnyBieTpEA
zWjr#gNL4t$Q5fnaam;<qmW(w2;cXe`sd-VMl=evpaiu<&@dQ1Q#t}*@&~a*oaq?M7
ziERaDF8hI-cDWi(R6zKeZF^Dex7C#e*YLP(_q7{|^C4CH=p$y9RO3f3B^rAe>P^d6
zs|^F?BJC{&1&?Q1jhq+dUfU!Mj%hS|&TDCE!m|y};rN`WgZ1?(r<ns|z8$x-6*jM*
zbL1O~(bjBs$IHEOCeM6A4<e7&y)Nec9BplFALF++cU+!HORXZU2cZa~8N7F{3)s%m
za^DD)cL)#nR)$!?LbrZnBW9Z~(K4P(HAaSp=)v^@H8*5-)xJ9JYil}->vmoN6cT9Z
zKE}kzd~AELvQfRWa1JX84^=SzWL#TUZn`NXD%vb)FnWIG#*%P0NKfvuxyhsIur_nZ
zp$FBM|Ep<g7T8```M1XOH~Rv)vU0YO&oRTPvYC{xd=7Z#od13C60*mJ-C=GL%y%P^
zCSF%^KT=t;+cUUNna+TJ`1F*v=}ZO>p&3FLOpcv+7;fXf9$`@5Yboh?63_B}yg*2l
zAfQ<q*Gs&1U{x#CAC(-t-=%f0yb#uXUst!#el%R5mJrUTz^$+JiT3T6pu79OUxegJ
zNlCF(^VBFIb)1~wmz6}e_DJMHQK4x{%l=z+9C#qn1^hL}+w$98(vXmg^P1efh28bN
z#|b@s&srCQ1KTlKb2M@m5E`CcI2lt+w5I0L&AdY_6n-y=#l+b7`Xdb2Q+}?}-_3q>
zRNrx3;vkwAHmyqulnJRDTG;Q0l(byQXK&spBBbhT;3xgle?W%=IXX#a88Z*$;|5nA
zsXkcyDSX+c^-Z`fAzWKiv+3g|`*E}i(4S(PvRSwCByVtLd|Y@UvyLX+CVOwsMIhWT
zWHN!jy|HM#-O<M8{?2JkOw945V(0VswPjlS+F9CY_m)A{@*m5XWgf`;LoBu%;s~S$
zq7&kPI%pdrQNj1O6NNuGEKs+twYKJ`%ESL)6782B*e-k@LXQaw-A<8YR{VX^N=d7M
zbaKiq<Y4FEi{SubydL~$Sy8&3(c4Wk(TYy`wJ4P^GWquH?e>b#M><&#z{iG=$`hBB
zDFDuCcOBjKJH6#M9yn$f$9N#!RofnD-i7Zvp`O^_Vf{Uuxo=$MoqH#NqBo<G4)_F(
zPKu6>(7dMti>JB;f2e*BQzs!I;ppr8yd$RSDd$*pzYzW?2cN&0-At~xyVFX7cyHRa
zWTt_BvgP6Ksc!0El3f^gW0`6$+`(>tYm4W^=P)OV0dtKwfgi5v_t9Z{d*5rU+E`uV
zYvF*(U?`w2@Zc{3=k(g{?KB-#(Aldv`l;cOi$6j?b}2%QYX`Pxy-=@bW@XM~XS|0`
z84jRMm!G>5V)1O?l2{3gfvFH;zW2OrYz*nIGf<rXco`2LkHY&x(jgaNXVSEeZpkpY
zRG5de^HA$~;BKSY#fih<{Ov=2<BAF?r&Yv79=KOF)dDUA8X4Q&+Der5jK(TuwnQqM
zT3IEVIdvHQz$wLX%7KoP>`kqnKE=v8t}Vt(iqHgrD=I1$t=8rkU*?;UlZWc9`M*q9
zr1kwi#DIgwGL`alKf#7eHiRFwe@Et-h2wNgJ+;gIe!tUvs4-_>mgTqZVd%!unA_%*
zqqJ3M`n=UF-}=qfnufo7=SSbM_?9MdWUhb!yuQU&@{}<qLR0f)f-Z#QWv#`k#a%Lg
zqDPU%?d@g}N`T_`@6~Fs;FNmgp5QR;pvn4?zTG&#Q|)-w$4xtfHLaUkmz#l$dvmd5
z@-Y)*6MY^I4i3l#!fTCH-bs;=4Ckxp2FtXnA#6)lwr2z3BZk*@x93HDDCxL71WHm1
zX-3rIvXdV8_#7uZOmr40Y=6G1`0QCf@|TZS#Y(atnL4}csITnkkAmKFcawltdmEeI
zqfqS}PXvxdDW|!-9I1o{FSh5dnR4w5@oCv-d*?EYS1Nn>v)T7#RZ^0g6Ke+1h~@89
zz?Cg0(6}ZD<4&*uapg$mCh>iJxB`_}b5j$_JPlG-R#yJSsB!q`&sSb2{m<}=@&Otb
z3AB^vlynH6%_2HTwhQ<%Ke3O^$sq?aBQkH&M5BFY4Von*>Vv+vA>*}seCWJ~^~0YB
zAPM_g)cxpyd!~J6=7GRq-#~neMUFl2*Op99sNzFrEex`yb<G69!pwAhI3g>hTcLLB
zFF!<!zaFr2U7p6}^#RhLq9}aMY4IWiv}*+({P1zPk5ytKTH1n+qJt!jh{K!=Ll${!
z?ydw-{8=jMCIh`7S1ETnQ3olC2pAPM-m+jcZZBtFR9xKi)GsB*E_n^;pbU!a?1VY(
zCs!EN=jXrd+NP{neJDE8qk8%#Iqa0FtfisBFz3>0zGAGJ>}y}2>H2iA1#U{b=g^*+
z^S`E5zIn4cjPNl8d2~^UEiGD@RyPrg=*#NM>v#6_sJi44K@&+nk)9+Z0Mj*97Wy!K
zmQwRbc21?9q{^o+E&59*=WIR^@pn+L5(}DB{0ahnV*Dm7amObX6|7JHM)l0U|Fyof
z0tJzlR)N63ChI;$HWTPbgfdW15I!$<7SQjYFBA0YB@prNAgc4?wPBL?EJe~0n!wK2
z6NdCg6&RbeslVrG^QtiZN;p+?5R(|GX9v0`ELbEx9*uYcq;7i2e(j|dm?-kn31SJ1
zLUm9X5=*diP&ZjJvxrAVq3*}(=rXuvRP+8l{)M8CkOYcHs=x>jJ&5fSX;=p^t*QZy
zForNjQ@Y&NH@Q=1>A}+94PghoVfd6U!p2G+ca05@-mL;-r(1Ft`m8z-woV%niI4=s
zK2xU=%doSE1I4Eq0ef<w*p207H@MbdL|U3M7$iob-*J74Sc%{^2S3PD;{LLtIRmeY
zaqegpr#@k;|E~|!+|RH4QinCkRY1B$D1&Z($Cf+;gAxrPWU3w1X~SINe0ksRwZ@}y
zVekl1F%qHJT@Hd<H~*O@IvySQPr@DXgJKsdE@*YC{R>W1;Op*Rtnj{lUh`^n0W;?d
z7jc=6U<VsV69cv09&(QKXVd%3E@u&3?N;C9Awx3@pv&uzoXpy{csN}{y1<U!?)@>|
zlkW<OXU%${b1P#tnfSlU_3AMHYTp9Ln1tMVTiU)H-Wp)$lB?m@6>#@deoo5qe9E0e
z08;&_2Kd;3Tb|+dT(bdhdj#OP#>>5_?ShziW9%S0GeC0fjr*{$h;Z|2a<6O5#(-{5
zqKj1)w7A%k()}xXXbZRK!J~5#cKW)9W5=Sz%(H?IIT5hZX{}iw&kjg;RJNAA2#Tm9
z17zQBhcFMBnH)ni`&D78ux2>4buT9~H}DX05V|5YZ&rL!pk)aLf%8m?qyKcTjFmz`
z!9#&r`&OCQf9y3=TlV-2&(#qTWd@%5LKKz|OGu4OvP<A<3O&R!aSD$8_Zov^|4oFZ
zjT(B0r^x@2d$abskzDA`O4rxs9MsU~yccx#ZWSWlO)WrJSm9GCr37OMN!i=8qpC2O
zBoxxPX42`@f~CDi7_pv?U&NmME$7P{t^|19mFv2SPq*d0l_fWp_$KE@j%2cV53DZp
z3Pdh<0uc2z9`FYr3`RywTx`=bGtHu>CpwoBn$uHvW4Yy5&HR?eo=pyqx0b;}D#o6S
zkNFHXn?o42GWj2z)y0h!u>u?<fb8ttF3`a&4?jGQD|zS_@x9WI_VdTxjOh(ATEZ1s
zD98D>WxGx8rjaVw)cAB^pR15PeOirS_H%x72C}QYuBdii?)7U|ff63Lshag<9Vjn>
za&=^_G7<sKgP(*8RD31d$zXHV$&qtW`eQMeY!Gv==}WK1&PKJhqrXdE0Q7RrCAB^0
zxT4&xSZBu6x9V44*yg-i;>Cn$_`y#eQFR_0aGBho=;_gRZevLin}FZhL1Zb9eT-cR
zIbt23_;9z$nqn2XDC(`Yk2H1F?JJS0KEv`!E&l$Knp@s*5Ic)B;?X%RUKx+6!_4-U
zDZq}suFYLVqcbPrpq+t(evBclA#iiT7_RQ3!bdlEo(~iVp}PIi4yLdmCARKpxr+5L
z6jlU=z->scZH-Xc>JdU>%|-(uV6bv9{=>lz;-d9bg#r4!Sxvljn^D%9%VjVswOn@6
zEGPVo(u(QAuj6h}y9XVIiLYw0@mC4F@2==s_FSWv*$n)C?yW(#7Ev;6^LO8!P>&lz
z75JISeGMMtWKovH!TfhAoZGMus<0Qn?|uf?;LP}?_a|*Hf2AsEW2ZU`?Q_<XBC&yi
zE~^|{DVMmSiY9WW{hKxOc$=w93?xMMdAb*yiI;3=dh&q`)B8F5$lM!xO4ZG~jYk`%
z0)Aq~^&$XU6TS?m)$=iE)qcEhBabU)Cm+pjwPI@opt03M*6rE#KXhaQHhCYvMGu{I
zj=0@n!3F^oWJAS0?6sj;sQ@G)R4+^~9OL20O+s{`K3lznJzAJp5Lh)7FD!989gs^u
zC`|9>0D-ozZL4M26miGv(ncy*CGdhD{;?-MAm2Cdd~edsJ(8Q#hP+I#c6DsJ9;cwc
zo5?&v_bmjHBspe+a;~jtxv@awalf%eUH4m?l^V}Mw(BlGXlvXHd-~DLZ%`FRyq(Jt
zkHA`<J;M>(UaFsJ37n1{?!tY?z^rAL$Z=^<ikILZ#weDY0YdsDGJ^O1G5n=lSkn1M
zQJ{0UeIiP-E#VKTz*gGMpNb-_6V@mcufU40b(>l7%1P}Uk9vl6D7siKDnb&k;LSZ^
z_=xH}a=f<;2BVY>GJ`j<x_DtGjE2*Rj0<kW0vKzI;n3njb@s2Q2R9N&FHqJacN#+=
zPZoz(7D-9WmmE+iU4A*M_~3D=32bnX9|llz&c(^Thfsmay>aHtn=`6Ew|8~@199^8
zoCt)<f)52M{HAz)*maiY&4u?wl0FE8-$Fd5C=s;XbM&dJdVAZgcj7UIiHs$L=`!Z5
z9zqkT+tzEe9j{R)%}`-hVGJM^B&kw*>YUh?ata2~kzHGMyd=frr7s00UjlvrZ7=Oq
zGv@-CT6rY+3rRkcebvu-nBu>!^ob`+Hn4fAP$wl2eMW8@^}v{;G|ng##mm622m#*4
z^9PsrJ^10Q5$y4a-hE{Ac22V2s6j1bFoZEnH+{Mhd8`VLz+HQzl3`;Afic=!vT1>`
ze&0JtpMLZhNd27mZtY=$l-T`W?TK@lKFH(W*tC@&#Uer?mpuv8e$ei^PuRcyfArhF
zpzal*)g)i!b72tID@i&%T3uh>rb;3I?BxE^Wu{i!^E9Pf>JM_sPA!uUS+KvgzpQs8
zHQBc6h-Yq|UX^agIKOi>0m7#CM#YyNMH~@-p<WW*12fh;IXjM>?|+UTCkk+=3JkzJ
zbR-8hWgt!F?ojb&p{m@R${LxkU7$iF3Cjawtzn9<{M(Fl*9G<I0~<{dHm-I*8~t9R
zP@kOLZxT-R_+1aZh4Il-<LSTMNewUjd&oQA0#XdhOlIZ9))RHb%AXo7{^kUbTipF6
zc^j~|kc8@7jNI{ll#&`a3Ad5xQy%jknq7q|kNY;t>+W2LY%Q+1Wva3J(kNPES1Iv$
zj1jGLXs^ygmu<7TOs@+yl9^o1%evE(Z#<FXO6kub4QdT?Nel)fL{iEOj;mw{s;>x(
z`}A==bz}1<f9TqFCNEu&+QS>3Y*s01ZssKL{Iij7-)e-SBBaR>5kbP=4Ga)a&Xkaz
zCu8#?k^Pp`ULg_CAHih8c`P8%N#2gWij_xqWN|?62mny$Cz9m&r{V~|;KrQz{FUr-
zR06&2f|mEMw_X+aLe5g{Q(VBcDD?m@ZGs>D@LTW9`YzgPRHFIQ1_ziDxmdyu`q>{T
zYL}Evx7{TYz!+RKax5m+@uH%H(?#;`Xu(kk+D7_ymFN7;b2@MF&H0~iBdonx8g>_s
zL;Z^bFtjwxYO`T<6vd5`b{IR@T$$Izoa)R2)7;zJU_&ckx$+!!wE4?Jmr^vn{AHv{
z2eaIbPYb18JCpIXM1qOJvQ(KVIiN&_Ng-D3m;E8c0BziJ$giMQD!`A<q+|niu`EQX
zzAmOKiv3CNCa-n~M^Q=!MPIYu3FO;^oU)SneVgsp>p(r=o0aL>(fd!1+27bn4^FMe
zlyEERF0G2%Mx<V_1Ilc3)_(G8_N@)lc$~O!)Rh8cOBHSzYJcATWw=^%r@c-oOhHdx
z$lvR(Le>eB%eUZ8OQ;!ucl{MZ;v3mzX=q`yC!0O7T?E2HsVNhmzUB1y5F|(ioWAjC
zZenX$Um9~?T6(p75qrf!9nc9Dn`&Q^o_c>H76&uogV2&u;NIm`PRG&Yjb)q2yeVte
z|2+DYeVrzOes;dl2+XO!ayCdBhmNSnc<Hg<>~y`xt^b5XFVwuIy}Nfku5Nx-if~qK
zzo%zQ1wa+O)Da)Vo!yCDuN{TB|IQ}=x)DNAHZC4KmV6e2GW{;ga3|wi%Cf1VVSL}G
zwuhN}udv5?@2cz%tF&F0X;p912On(iFo0)lc<Kix@9EEB*S)((8-J8OoLrC9g#<`S
zwTnDDD`)g_Zsomue(n(H72B0uxpRkOc}v_FFMeWeW<LL>4?mDoettuGEpx={7mFdd
zk-PY4{th@#_#N4hbT`}_`93g;o28(-xtG5>9vzP^IZp~NAyijs=x5;i1$fN?$N^vj
zY&Y>VnVI?=Lb~bZ10QbC;Nwv`v&#2?;=q~E%ay^u-7BT_sMyrvhRN7j$Uo|s%fCPR
z`+t3f=H=(-)5H(;^}V&GY2A3}zn^$7-3tI<Vw{r#Rs~W#ZwstzY1v<bNXp9o^7Zva
zp+1(DN@>CxEV(S?N|oIYZtQdca;sQ}MR@ZFv=j)0e2NyeW(RD?veHxP^g`dGf`0z|
zIY0Vd$4m}@n*`^`?y<T|a|t36ScmPy9||<TDxOs%P<@Q~#8;uY$mM{EfwA7^M>{(c
zC5uG=`qI+o-ovBAucGHPv~dkThVLAQNk6b_0yFNXXXJQBMMa74N(nL`J`@$Hz&|uJ
zcy~bxnHkEbM@A9~0!Fusy3joj`r0#y?>R2E3EwX%FL%+>(kibWb;HT-6KhylSOk~a
z(tW6|t`4q#nk_L;-1PlfV}p5SZIC}O_)9QkY<5-<^5pU3Wp#CR0@1_Ytn^>FkF2<Z
zS$~f}YLb5t(k8IN)hyQgvVd>jzBQJV2uO*G-&C-3aPX+Dtu3#qA%xKo{ws7v@~VTD
zl|;jw`t=J2i;q`mMg>+-P>>@qzcw>7V;m6B8q`m)Wd`J#llKR4i4j8cDgj`pQ*Ze0
z?yeUX7gu>+-sh)Jp0E;nLjD(Tnd1n39Dz5zW##2}U%h%Y_xEoD2PdbyiHQl&5^~?+
z|3O4^%Ik0V#K`NSQCASyQ+cYDK%f8i!v5ad+T0{4UnbE1FR;B@prS1SkEKDncS0RU
z?Tz6kRRoOukA_TjjA_)H-jL*RlLQ4ofS7<6Wz}G5Uq3g{|CBUaG`9jz+5FeEP+4xq
zHn}UT8jlJVVY8Ms9HyY4=pLNpqJKOJr@n%F#4?Ho{Y#4cF7fn&Os}e+E0HnXy@!gV
z!5VIhHSb*llsC)Std;L$dLo~-E#>vq?`qZOQuLzlSiL^Pu>Qkv{fo<o4e6&I3Eo<N
zdj(-3AO&De*zdJ*VNzp^YufDJb28p(zzdC(Y7nR1a*fdUC#$pg;#q@`f2e}!yZ<%L
zBPmS_#bFFDVYwe5-EWy9BMj%os`v2E_K3Jkd3Y`P$k3dVYR4m`8v~EH40_TkU-h&3
zi4ie(kWCSR<EgM1-oyq375Wy#3m9c2)gN~G++^C0%1sw$GJ4ksDHbQUI-acJBQ)zP
zD0=mJQ~ytIMUuBa!~StU&qf&)sPis9IkwC|U#_FK#4repM-f@+J_BjhSA@kuE&2^5
zen!i&5?wp_<}C({3F@c5!v93@`wS)aszHx%5#zK&mHPq$d6=+b83T_jHn$$rzyu{6
zWwf&EXM*uGJwOF~v-WLLv~KJ&slxc;nQHWg_SknriKDlqd^}<=$t?Hv;J30Of-M;#
z5Wb>!GjwmZHEDRPxdQoec#m0$uNcL@X7rN7SoqV=ED-2ucIl60u5Osn{v8tWNP`O=
YET8(%G7C?Qt3N~t6>a5mn0fI30JRI{K>z>%

literal 0
HcmV?d00001

diff --git a/assets/images/help/enterprises/audit-log-streaming-s3-oidc.png b/assets/images/help/enterprises/audit-log-streaming-s3-oidc.png
new file mode 100644
index 0000000000000000000000000000000000000000..83d9ba129181f4695d404c30dabbb7e65c6040b0
GIT binary patch
literal 6735
zcmZ{pcT^MGyZ2K-kSa(~5C~101eD$*H9?wyA|T~(ln&B+Xo7T!0i`I_fJ6{bAV4Ug
zh)6F2p@V`nX;MNB+<4CWyZ60++-FVMGxN-T_N=|u%=h!11QR1YMmjD!006*<fNPrq
z06-y1+lKZ6Wy|oE`z~b%^flGf1eEt*TcsRmKYoC4G&BT=Q`)ouV4Mqp>Q4$~<)W+r
z05~5A08{qBKj-p6|G5ej$_M|a4Y2u>cr%yy767<fkI=qt9yGa;bL4A2;onK_T+B$9
z_-SW))Oy5^xVMgZ<MYEu$w<klSoLvdR?w}0>s3Kt(k4`U+ge(jKMMq0g2cqYAoBcU
zx49<|kZv0%&HPjfTfRlRb*^}8O~Ha<e<pwZnXTsVEz++oa-(m5(@a=T2^NdhNkHC_
ziptK;1|bY75rru(E{2(!Q367_Dux=N1RLDd)s;?2juO=9|2wsCoL4=}d1-mM@2y^{
zd^O)wEv@4EqS0RiZ!=Z%vaNanSX}w+!@8geSy}lHM<0!IjO4r<NZBOPbH>;ovq%~b
z4J)fDht06o3#X$BwHmcBuDr}juwK|^>(hHY?;099+m?4m-R|J>RA25GM6s3gaZ1_A
z(J=AIwYLin^d0%xWA$Xdj#0yfiyq&J92u|1i(+de?d>8?AMHE?i9OVK6sdP|<Y!W%
zA?0Po3Arf!$#-{sF8Pi{E_^v2u*uFQIguN%**K#vFYic4m(*Jzn4mtwL6Umt6E@u1
zTgEN_@~>?UHg+kcS@Ow&q34-e+8duQn_8b+?KuVazt`E#_1zqmt0CPyDYC0u(c^z{
zd|SVJH>$O@Q~LMwuHg7b&#&iJlV5KO=ql`s-w^+ZWL=qV_9gcA^?g_ii-I-Ohe-D1
zO8wSGtG(Le0ajO6XJZ!4eV09P$W+zYg{ID`RnFeQLDWVn{y5~&wWWFq#&zx5CvXA~
zbm@_OUvKZ>30uYuZ4=^?X{#M8><b1)#@BBe!_JlZA=F+_)O5h__iJ1c^I(pN{+5hR
z28XiZV(7XzRpE<c{`r;FRU5z?g~P`h2XYUSD6`%$&}SW}NlIu|-#7~5E9kF1pJ$Pg
zSNGHig0OKCI@gU9?VC?s4_Gzwyt|B;;x)ES-Te1Q>q-TQ8Q>8-SWJr0!jxE1<-5Ln
z$KqB-q(c$R3eg>)yk8bO+q+)I^U%FvJ!c@6u_7m@=}GOVg6#3r=^4FY4X6nc*}gDI
zbQobR=WC5boh{EuRCfN@$GR-9<38=sHEc}ob1&&TzT)d(U|=|2P75#J3yXZdtW<wQ
z8mATf*=tD;>2H@WZvezE42wW&WIQwcVO{cX+_2@%T%3#vanbh_r9W_^6zdqW%gZ;Z
zX>TxXk5uo;(Xe9kUSIf>BELSiQ9<5C>n8Nf=jG;-qO`f#T;-E~?C1k;s-M-N&RfKO
z7>9s!NiT+mgoz2u?oa5cPKhbW$>oP(moKLo8*q6|N7CGn^gA5)KCu-qeJ`18BqV&|
zkhKrsC8)HnAKsd^y<BMFU7mzL{#IAYcMbU+TJj3~4G+NfaJP7NYgJR`lH2986{t(n
zwKmWXI$<G@=4E6@4R4i$y56Ke@vFFUX|E%tx$SBs(@Oz$Nz`JPHp26J_TO;r7*TQY
zQg<OgC^;Gl9aIWB%$&dp_RGr4z3%El{2IZJj9M%d^1msWihW5h0yI+;{UC-CEzymJ
zc_UU?AvRV96^~$D;ch^o#4dUN#@BzRiWnt+wku4mp<;!g&U_2B`h4o|vUU9GFNa#^
z+cKh}2Sk=v*4IBtPX^9clD8$q-&2Z{rh_Fe0SC^W#`TSPs2JpMT0T!se!$1ed*8zD
zWzsX<rmuMjthdzRC6ju4D<*xn3qnSaz;H*x^eOA5da%K;A}Pa9>p}s&Py%RtfM-zx
zXlfZ;gbd#ddv<OG)xQ1L$1Z|}^GS^<B=%PvJuPR6T#f&kI!G5V()eI+$=^qB{#q-{
zYV~L_#O(49r4vWn2G6L^$=9}COpcOr?6PERKgYu_F|<vjRnCRs{Tnid?`55xg?}Rw
zokBuGGlGnbQ}H2i<}teC+j?Ly*wM>tuz#K|e=sK!QCQ?<VkHBq-@j_KIJvl(KBpU_
zd7GHSqa5*l7!B8tT<jkPUW8PcLVho01!Qmy^-bBG<i7|R)Bp3DYSmdn5Bo%D%wE<B
z<dY{o4Zg+??7kuOnDOPO4|`!8_}`&rzKv#GSPor`a}+7y<a^ci^<Ale5G0~1@Yd&O
zuOES1a(u|stiUSKn>;)`vo-FuytGtdPu$$hESOizjkHx(N~)^9`GqcAfEUQ@J==`W
zj?Zkn?a~(|^a2o}l{Mm*8Pz6=!`GzyNY!k+!Q0!<e$}=21Ynh7kJsRx0w_#L3MEde
zp8VJ|eg%Q^tE!?x1V~zu#BWo-*w*imiS#D;oCUA`qOFGEh)s@Wix724(0UNsP64EU
zLt|cRx&566#_=86tPEDyz@MFC%XM%TXKi3>+w9`*F3ZTsXuD|jq^Z2z$Ofqc&AzR%
zQc_<(L2qOwSu%JvL@Q9+K>H3fJ^EX%9QClP)6c`~uBYr_HQLIJlUq^Vx$~3#uBkQX
za0BCk@djAkf#LTj!sG-$b%lf6?2uD_`sBlH7GR**<^vlWoBN{i7l5N<W7%tKu4a~&
zF5NvnhL)CDVv>^kO`nr;M@F^kOE3F94Ig9)(X?2h&nZywi#r?qOH@>c5j8TlL|?J<
zizafWyk|!M<`dBNXwx7*s)0Qay6Hgq@)Z{rwk2XqO1`qOv1Oi~hDlj<%hcD`Ul$SS
zJXl|M_um)ZTmv`dbMHNUK6n|gX}7}ARG_jK$225}*Unp!RrEK5bX-DBuf%H#)T?~I
z6)375Wj`{i&^E-Utev{TihP!cW`hqXB~!ttA0OHaE2GU*uH{x{sj#=1n1zl#+Z_Cp
zhsGn)g=&PTO_Kp#hD1!j=X8lcLCwcL!EH{|=t*7RMRI}GUOaT@-3WTR+AxYuYhO^o
zCT)@>P?#=xagR=@CI!TLtQEI%*A?M8Sqw`YI%cT~WMjOTWXY_#*<VHztNXvY5mDBu
z@Z>>I`hofU(ksh+>6e0ikY#9QHbo05(C`y=;XY<47ZgJ|u)$3=9Dd&D&>oBX>K>Op
zsSCKM7q`M<qffcH8WH(9FzG?R@oaygoTW%%F^&bM8L@Int?<qs7M6GyQco|CRd1g|
z6RV{j^lHBf{i?(5e@4n;Q)uj$XgfoVro&tTp$(4cQJF(902`a--BOt8l<1#v#PdEb
zHjG>}B1@nguEE2Ato)U|c2OAI-GA$dquAh-4*Tda=yKOItKhD63HYthoz&8bBoV8*
zoWS1oZY9?rRjHYEDsjF2)-=7OGOFE)pFvf^$aldSKYe!te&{XjgSV{y3RBrUVQIpb
z-?mXJB#tO#FX1AuUgHWEhy0cR0utuTen<%YV!{k%c{6Kg^bHNmT(2h;BHS7shhJBe
zR=mw~>%Qf}n6+dub1%)*cS6X*F%vWF=euZ|s1$U7neZi-Ok{lriVOGCEp(J=X!}tq
zsHwaw=N%Jy=hXLgJjTUiOV;p%2d}}>D{58(>vnIHwz*&9tr;Proorlbe<qUsoq=Zk
z@o^A(zv(frpT1G1jZUXwSnJKp84;h?zp6W{6Y7a!K60~RLEq_j`&W(oxI5J=+YYN1
z&aVuy!`F-#a@3kQ^zYJOe)PL?U*)MlSUgY_yh4$HZ(FTFJjD_A()h^qA3Ayo_m<f>
z=!EtSm!7u2E&f;}hmX_-o|yc+8XF5jAk&TxN0KG|^cYc@;f_msZn~7rzSWiM?*)V+
zG5IDCti(UlL5;?P5K$PIsl}WuOxZlkl^jg1_YK}4wplT|M^S!n<b@x<EUtZGzd%=E
z%Xhulabp3SbwaAIbC2L!mV3-T8qjSWRedqi@2wh9Lq6$7o*qPP=ghF*(8CHst&H!B
zI3-Ff8K3Q`G@oyGo;yGvHXa+$+_5muQ#%NaI2}<Z1PQw#^0xB`+Y(iRp0%rd*Ajxt
z3WmIQm!`I|woZ=%$;7jc!1FH;3H$rL)Trnmw|o!B5#JP~F)*tHW&@40T!Y(oMW9tB
zu&H%u#t}tSw=j(l;38b0Hcg&1Epz1d)OB3-UJ^GGruJ+LoEEfGoiLSSf42K`?x<yb
zW%FY2wPxt=Bs=n#&4ZJ`S%s?^xB6DA{dV8xo%VY6;Db-<fx{UMtnPWgxUAXWJx8tG
zY$}<0j-7q&ddz*=gZafxPM_vfgAVP#6JCT%|9#8q$%i_%qVI`;>o-H!X_%J{iQ0J+
zb}!az!7WO*zsL($<g_Hit#x}0Wp?eyaKDe6v8|OXZ|E^#_IG_H2jPl#j`QU+0i}X-
zxT?AJQ>59=!TBe75wcI#-t6*Ls6DCOH)OK9#J*>qeX{FInmUs?a54-wMw$a%ruu^<
z4%4faGu)qSt>ajzS)PSS(ZN5Szncn}l+Uj`AN(j>(Ia(3o^Z5rK1pQh!{qdAPesyo
zLUxXq^P21rf`1dGrf4NuQGmqI=is>1i4AM@Dc&75n+9*U?}~ikpJZLRu2wCd{x&|}
zNI2UGALk`F5s($t>>2mR&#o6?vh14o=14V-%hRDc#t+k&abb?B!0F(;&EP10Vl>eg
zTF6^VHt)71kl&pj)B7sz;%CmfmQ_w^Qx`xM)TUGeTavY%i&9`-mG6vj7aH^Nk?HEI
zdjeR!q;pnI0*)0+hWls7GJg5kxoLcuO09V1X;XOJXd6w>CiLcss&m&sxNLHD*7vNt
zQ)4%W8g8H-*+unJZ>fUhBEKG0w#|yuD^8AI?-buCt=T9d*U(oWs{tRan5`~XnUTOv
z6KHNZSjhJbDa+Ql_XB_nlO=>fD0aZ^Z1kYFfiK+sjI<TuoF`*HLBJJEFhMR1aN1gR
z%omdNml&svV%mL4!OP^-8-So@a*vHMwa_YkC-Z)8^JLQi4xB!Z8~TlS-T%ApJ+75R
zjS6err{CR@I-6`}Y8lMUv709>Ti7Do8~3_PNjIhaPxz<e7pWj<(_BJO$Cd;!#;sjF
zrOyMG!yTm^27s5l1k9?X<$8Azo;{RmDS{==FC2($L_V@-m9&@B>cdH5)!Wtc_Ur{u
zmiN;wzb*!3K&OoM7NUWiqIY3VD)-e*o=iQzpC?D%#LfY7G0ehw1UdFbNOodUUqn(>
zRw^@l4PVdyId!bM+yr`emH8GufV*m=kuNtDs`={7e2-`ic^Mjkm|(hx$$mp}NW1SV
z>>Bxb9`f?yXn?9%2h+3Ove#$xe@7%Z<3mq2cKJ@f8L#^aaFASFFCJnqgHchNAhDxf
zC4w^}!<86gu+TNY;Ps*8U)ucDj0`&EGRVDE`3An&FkmtuQUDKFt(hY%5SB)XbGWI=
z20YoVE%e&!%ugF4#(5v7FlS$C_!B`fAdktY>jN&}ZIHBp+3Zv<GEVk!D3?fLEBs~r
zeP{@l<ARCvz;6NeGS^D6#a|h2oQju_0QHB-=5#OsYw}8of7!P;9(YH)J2BdmLgZgL
z*QAM4zJg<@&ygup@>^=17-mn62fuS?Y!;vHwm8uBs5g>sARi`=6fZd%ESR)lMr@zI
zPfuxuz-UQLC(KgQADW`Xo~Dj;%*1_-+F*d!H=L7d6p$ITphH^JbnE`kmTlEkE(e_9
zkv+%zIgC69SI!K}oXYk^^=FMvj!RT<&qqG%pT!zJlwhU_*DIQiXb4S(@5ej^U-Izg
zY|lk(%N0=c>6ZnC*$@ji_}mB(p$KL;XmsvKv5!X92e?X;YF{_TKW$S|C)<BvFiag6
zjYsy^PFGeI%nAn7mJZ@_N*e65^;F#PLL66q*>b?g8EI^pIirM-EeX#L?=)ScQG~4+
zEw@RjnJS<Q144E+`IeWKPwkQ$XW#J1!B`<Cb{9QQ@`$rmaE%Mk$gQ1co9f!kJ0bI5
z7ML|=*HngBB1DQE!yt0C{;J;3-vL=)q%y3TY^}l_&>jS&!a)M=S@HeX?|)~?Caiq%
zc$Yumw#EMPkRogBMbKt>09I^vHE~4l80O$;5Xly1sK`uwiL0F>zXh$nKJNVidl#NQ
zbI;wTFdO#~nl>3Us(t|yUNDhV2<WSUkv?ri>bq(VhYvsP{W&&;yOL|3@mIf`(}Z)p
ze1bW=0G{FemPxq7`$Xo`?V(h9ApvphosW4VZ9>9#%7RbnFFJ9_AVu*mGc68028qji
z8F0_MgUs{|qZ750sDRWxT}Bj%M|F+)N}viDy}_#1H7{6*;$m>21zTN^14}60D?HQA
z{!#2cM+L_?qtQbLCR+)bH6tE?0=trf;Tx99ExQ_x2QQFNF=y#~f*2~Ozvg1O|GiLH
zy6>=2wFr4}(sPE_$;}vwiXUf#|8?3cU{JDJH+3Mzk+#f9)2uBL`QEj1DD@HGv(H8s
zV+JzbJY@BfjsvgEJdiQg-F*-|+4o%a@|7*z0JkoP!|F<>hyz;Fw+@S}EwQP8@VXFJ
zgF?SN>=a-7@Ts#ier$1{m{aq>b0*P>Z7V98ybmjPxw=`&=ls|hIRZ#fP8~6Xi<E3h
zLokXxE%eZNQ(7l`baTCqy#VXg?Orwnrp;hd0mw?8%<&rJ7=D}p8hSzh+KW24kY!C7
zW5wEvctJJ_$VD14GOn1I2fS^m0SssS4kZ`LRz;ZB>MMFZy66>@>NH@tlOabNBLlUo
z8i<l6--E<@nerzCxjb!H{dtR9u8w;mpT&3Q2&9hm-+WZ;QNSzv<kO@tM^cZAJl=;<
z@ncRv<j-P<ku1Qf{uqDPx*gfUn;VXhL^x6#kJ{}W&^$y>{#0b)dBKYGiC82!l?|**
zsI%Xr7qrakgZOc>m_G35Wa*y&d%iA7)G}-(nty+tn(!*7N-E#mi7<Wdo2k$%0j1O|
z&1EIG!e~z2PtDH6Sujrha&RmuIhK_rr$O4(UZ`JLVpVD@@9gVG-yQnA2T8&@ZjRfF
z*>z$WfP|uprgb!a6u$;ayiu2<?v*nRWw{)g!5sy1Ng0#4`_0lrMQq&LN$Iwi`KyN!
zE?vh$#4NH^Df=SE9@IDwB53=Lq*DqHE134i3}Z^p)@Z@WegY%nEA!5gd?)CvA}^FR
z6W2i7)p1O+rxnL10{JP6V0q074ZTu(&eMPvNeCVF_-L5FZd7&Go2^!$U|AUf>PUFV
zEv|N#xb;a4RoE-mTxE|g48IXEm8YWM^0iN8Lb;NiqSMJoER@CnAAM*ORo$$yQ}IVN
zK564S%6s!13b`9*h^=#W3T5Ls=F@rqr1|^;wi&C07r+!g*RQI8|B;k)$>(<;={Z^W
z0bRnwXOqy-tfmeTc8(!hj5am;`1sUf(m$oo(Z@$z0OjN3lPigWPd$65%b9N;r1`Cu
z@xn09`r=YruMVV06g5J`IgV&ZKjO-^mP|fAp;621m7>QC51Z0sU=VwXZ9wFNlO(v9
z`6l7m$|i?`Vso$I{$^}N-2X`yRr}r0s-LGuyW!o-OB)N;y}xK?YuXM2rVj*_DQeiR
zA9&X~e<nFOIh#V4@ejwPAqWgrx}qY_Jv+PQr*E>dZc@Bi$FQ*J%U|OIJJ%F)a&n3(
zIBjlW@w%-|)AwN0MuI{86h1pO^{%|RjF~xgTvpQb(IQApL4gRuHaDM5fDjuKnWwPV
zVfFW0KGXEl^wG@D&U#Xt+`sR*v$InsJu;G8^B;8ei;D4Nhu@?U5-=?kRv)K$N!-Hw
z`}-5j%>@Om=@}WXDI`om#%KRco_~;Wg@au9H-%9_3DqCozHOJ4m(T9*)|a6Bmo5JR
z!$M=~;p@QRm6ejKSFSuT)e{#NH-%t5uAu(GTnY{sno*lFfL#It#yDy_zkKPPpU+?2
z+?4<D;X^SFH%9Sc;jY}&LjTRzY)ysMl#0NFXb9g88IE2Y#dVly<Co!D++b&Cr_diG
z_z(ErYJa9aBo?AmyJ8W=28Q`$SW26<()9M~Z0|)F8m52{9_^7aXF@h<$9K2W2_P}u
zNFlTHR)3*3hgU1U7KNE5|AU-EkG;sW|2!u{k%y@sx;n+5cRB@+$GdMrt9aJd1}6U{
z`(X;Fhht!gt;*;dsKrgKArn_bOm}>=3j22%CAC=HEacxgv`NGVcYAI{csCb)DBr}F
zGVeuuKFZ<#|4a%@Knzq^+2@-a<spkaTJN$d;W3`^Q7UYI$<(V->pH4sCO$^eCXGEn
zBxQa+3c%q*L<9Y!JqMYUHH}y3kpI|1gLxQNQx&@B&j&w(#4fzWn3(+N*RC^Q8knIg
z@LJZCo$k1Fspr_c89=d1SvmXi`TSyX2icD`omLoU3J50BK5qpn)pZeQe7%W)!S%pp
zXe_Mm?~lAxLzO<Sex537vMvX@{p+y|G5xQ)^l#_Q4Q0z<i62G9uBCsS5EJsraOi%i
z!r|~&$Bnk{4Lb2({Wm?=)(TV~NUYHC6o~l6HveM{tw>!<W`p146^_-P6NS)a)|v6M
zZd!pv->78ak6j<i{=Wf&1ok+^4SoN@z$Ud#(9VdKm@0R^)_6h4zpk{OFxTZv1%#jW
zF=8lrV0v_fwDG)9qz|&5&x_)qk?a{0a8#Pmc!5@U6x)Ic9nJOMCIt0Ao-y+ny0i)o
z@%huSkcm(0Vw>2w4GXqZBPH%zdTE0Ro&k4GLlz(EMbxGk{`r}M&@s|3*R+rRFA+!%
AFaQ7m

literal 0
HcmV?d00001

diff --git a/content/admin/monitoring-activity-in-your-enterprise/reviewing-audit-logs-for-your-enterprise/streaming-the-audit-log-for-your-enterprise.md b/content/admin/monitoring-activity-in-your-enterprise/reviewing-audit-logs-for-your-enterprise/streaming-the-audit-log-for-your-enterprise.md
index d2fbd31330..e11c72cb7a 100644
--- a/content/admin/monitoring-activity-in-your-enterprise/reviewing-audit-logs-for-your-enterprise/streaming-the-audit-log-for-your-enterprise.md
+++ b/content/admin/monitoring-activity-in-your-enterprise/reviewing-audit-logs-for-your-enterprise/streaming-the-audit-log-for-your-enterprise.md
@@ -42,6 +42,15 @@ You set up the audit log stream on {% data variables.product.product_name %} by
 
 ### Setting up streaming to Amazon S3
 
+{% ifversion streaming-oidc-s3 %}
+You can set up streaming to S3 with access keys or, to avoid storing long-lived secrets in {% data variables.product.product_name %}, with OpenID Connect (OIDC).
+
+- [Setting up streaming to S3 with access keys](#setting-up-streaming-to-s3-with-access-keys)
+- [Setting up streaming to S3 with OpenID Connect](#setting-up-streaming-to-s3-with-openid-connect)
+
+#### Setting up streaming to S3 with access keys
+{% endif %}
+
 To stream audit logs to Amazon's S3 endpoint, you must have a bucket and access keys. For more information, see [Creating, configuring, and working with Amazon S3 buckets](https://docs.aws.amazon.com/AmazonS3/latest/userguide/creating-buckets-s3.html) in the the AWS documentation. Make sure to block public access to the bucket to protect your audit log information. 
 
 To set up audit log streaming from {% data variables.product.prodname_dotcom %} you will need:
@@ -52,23 +61,70 @@ To set up audit log streaming from {% data variables.product.prodname_dotcom %}
 For information on creating or accessing your access key ID and secret key, see [Understanding and getting your AWS credentials](https://docs.aws.amazon.com/general/latest/gr/aws-sec-cred-types.html) in the AWS documentation.
 
 {% data reusables.enterprise.navigate-to-log-streaming-tab %}
-1. Click **Configure stream** and select **Amazon S3**.
-   
-   ![Choose Amazon S3 from the drop-down menu](/assets/images/help/enterprises/audit-stream-choice-s3.png)
+{% data reusables.audit_log.streaming-choose-s3 %}{% ifversion streaming-oidc-s3 %}
+1. Under "Authentication", click **Access keys**.
 
-1. On the configuration page, enter:
-   * The name of the bucket you want to stream to. For example, `auditlog-streaming-test`.
-   * Your access key ID. For example, `ABCAIOSFODNN7EXAMPLE1`.
-   * Your secret key. For example, `aBcJalrXUtnWXYZ/A1MDENG/zPxRfiCYEXAMPLEKEY`.
-  
-   ![Enter the stream settings](/assets/images/help/enterprises/audit-stream-add-s3.png)
-
-1. Click **Check endpoint** to verify that {% data variables.product.prodname_dotcom %} can connect and write to the Amazon S3 endpoint.
-   
-   ![Check the endpoint](/assets/images/help/enterprises/audit-stream-check.png)
+   ![Screenshot of the authentication options for streaming to Amazon S3](/assets/images/help/enterprises/audit-log-streaming-s3-access-keys.png){% endif %}
+1. Configure the stream settings.
 
+   - Under "Bucket", type the name of the bucket you want to stream to. For example, `auditlog-streaming-test`.
+   - Under "Access Key ID", type your access key ID. For example, `ABCAIOSFODNN7EXAMPLE1`.
+   - Under "Secret Key", type your secret key. For example, `aBcJalrXUtnWXYZ/A1MDENG/zPxRfiCYEXAMPLEKEY`.
+{% data reusables.audit_log.streaming-check-s3-endpoint %}
 {% data reusables.enterprise.verify-audit-log-streaming-endpoint %}
 
+{% ifversion streaming-oidc-s3 %}
+#### Setting up streaming to S3 with OpenID Connect
+
+1. In AWS, add the {% data variables.product.prodname_dotcom %} OIDC provider to IAM. For more information, see [Creating OpenID Connect (OIDC) identity providers](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_create_oidc.html) in the AWS documentation.
+
+   - For the provider URL, use `https://oidc-configuration.audit-log.githubusercontent.com`.
+   - For "Audience", use `sts.amazonaws.com`.
+1. Create a bucket, and block public access to the bucket. For more information, see [Creating, configuring, and working with Amazon S3 buckets](https://docs.aws.amazon.com/AmazonS3/latest/userguide/creating-buckets-s3.html) in the AWS documentation.
+1. Create a policy that allows {% data variables.product.company_short %} to write to the bucket. {% data variables.product.prodname_dotcom %} requires only the following permissions.
+
+   ```
+   {
+      "Version": "2012-10-17",
+      "Statement": [
+         {
+            "Sid": "VisualEditor0",
+            "Effect": "Allow",
+            "Action": [
+               "s3:PutObject"
+            ],
+            "Resource": "arn:aws:s3:::example-bucket/*"
+        }
+      ]
+   }
+   ```
+   For more information, see [Creating IAM policies](https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_create.html) in the AWS documentation.
+1. Configure the role and trust policy for the {% data variables.product.prodname_dotcom %} IdP. For more information, see [Creating a role for web identity or OpenID Connect Federation (console)](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_create_for-idp_oidc.html) in the AWS documentation.
+  
+   - Add the permissions policy you created above to allow writes to the bucket.
+   - Edit the trust relationship to add the `sub` field to the validation conditions, replacing `ENTERPRISE` with the name of your enterprise.
+     ```
+     "Condition": {
+        "StringEquals": {
+           "oidc-configuration.audit-log.githubusercontent.com:aud": "sts.amazonaws.com",
+           "oidc-configuration.audit-log.githubusercontent.com:sub": "https://github.com/ENTERPRISE"
+         }
+      }
+      ```
+   - Make note of the Amazon Resource Name (ARN) of the created role.
+{% data reusables.enterprise.navigate-to-log-streaming-tab %}
+{% data reusables.audit_log.streaming-choose-s3 %}
+1. Under "Authentication", click **OpenID Connect**.
+
+   ![Screenshot of the authentication options for streaming to Amazon S3](/assets/images/help/enterprises/audit-log-streaming-s3-oidc.png)
+1. Configure the stream settings.
+
+   - Under "Bucket", type the name of the bucket you want to stream to. For example, `auditlog-streaming-test`.
+   - Under "ARN Role" type the ARN role you noted earlier. For example, `arn:aws::iam::1234567890:role/github-audit-log-streaming-role`.
+{% data reusables.audit_log.streaming-check-s3-endpoint %}
+{% data reusables.enterprise.verify-audit-log-streaming-endpoint %}
+{% endif %}
+
 ### Setting up streaming to Azure Blob Storage
 
 Before setting up a stream in {% data variables.product.prodname_dotcom %}, you must first have created a storage account and a container in Microsoft Azure. For details, see the Microsoft documentation, "[Introduction to Azure Blob Storage](https://docs.microsoft.com/en-us/azure/storage/blobs/storage-blobs-introduction)." 
diff --git a/data/features/streaming-oidc-s3.yml b/data/features/streaming-oidc-s3.yml
new file mode 100644
index 0000000000..59363ca2b7
--- /dev/null
+++ b/data/features/streaming-oidc-s3.yml
@@ -0,0 +1,4 @@
+# Reference #7030
+# Documentation for using OIDC as authentication for audit log streaming to S3
+versions:
+  ghec: '*'
diff --git a/data/reusables/audit_log/streaming-check-s3-endpoint.md b/data/reusables/audit_log/streaming-check-s3-endpoint.md
new file mode 100644
index 0000000000..c82615e3f1
--- /dev/null
+++ b/data/reusables/audit_log/streaming-check-s3-endpoint.md
@@ -0,0 +1,3 @@
+1. To verify that {% data variables.product.prodname_dotcom %} can connect and write to the Amazon S3 endpoint, click **Check endpoint**.
+   
+   ![Check the endpoint](/assets/images/help/enterprises/audit-stream-check.png)
\ No newline at end of file
diff --git a/data/reusables/audit_log/streaming-choose-s3.md b/data/reusables/audit_log/streaming-choose-s3.md
new file mode 100644
index 0000000000..57fa722576
--- /dev/null
+++ b/data/reusables/audit_log/streaming-choose-s3.md
@@ -0,0 +1,3 @@
+1. Select the **Configure stream** dropdown and click **Amazon S3**.
+   
+   ![Choose Amazon S3 from the drop-down menu](/assets/images/help/enterprises/audit-stream-choice-s3.png)
\ No newline at end of file
diff --git a/data/reusables/enterprise/navigate-to-log-streaming-tab.md b/data/reusables/enterprise/navigate-to-log-streaming-tab.md
index f99a165383..c03947a065 100644
--- a/data/reusables/enterprise/navigate-to-log-streaming-tab.md
+++ b/data/reusables/enterprise/navigate-to-log-streaming-tab.md
@@ -1,4 +1,4 @@
 {% data reusables.enterprise-accounts.access-enterprise %}
 {% data reusables.enterprise-accounts.settings-tab %}
 {% data reusables.enterprise-accounts.audit-log-tab %}
-1. Click the **Log streaming** tab.
+1. Under "Audit log", click **Log streaming**.