Guided Walkthroughs

By Implementation

Service Control PoliciesConfig RulesAuto Remediation RulesConformance PacksAmazon GuardDutyAmazon InspectorAWS Security HubAWS Network FirewallRoute53 Resolver SecurityAmazon MacieS3 Bucket PoliciesCloudWatch Alarms and Event RulesAWS WAFAWS Secrets ManagerAWS Systems ManagerSecurity Groups & NACLsAWS KMSIAM PoliciesVPC Endpoint PoliciesAmazon ECRRDS Event SubscriptionsAWS Resource Access Manager (RAM)

By Service Protected

Configuration Packages

Strategy Guides

Other

EC2 Security Controls

Data Lifecycle Manager

Configure a Data Lifecycle Manager (DLM) policy to automate the creation, retention, and deletion of snapshots taken to back up your Amazon EBS volumes.

Configure the following settings: 

  • Targets: Identify target instances or volumes using assigned tags.
  • Schedule: Configure a schedule for snapshots to be taken as well as retention policy.
  • Tags: Configure snapshot tags which can include tags copied from the original volume, as well as additional tags.
  • IAM Role: By default, the CFN template assumes the AWSDataLifecycleManagerDefaultRole IAM role already exists in the account (Which can be created using aws dlm create-default-role CLI command). Alternatively, select the option to create a new IAM role.
Premium: Get the state of backups report for your environment
Items
1
Size
0.8 KB
Missing Parameters
AWSTemplateFormatVersion: "2010-09-09"
Description: ""
Resources:
  DataLifecycleManager:
    Type: "AWS::DLM::LifecyclePolicy"
    Properties:
      Description: "DLM Policy"
      State: "ENABLED"
      ExecutionRoleArn:
        Fn::Join:
          - ""
          -
            - "arn:aws:iam::"
            - Ref: "AWS::AccountId"
            - ":role/AWSDataLifecycleManagerDefaultRole"
      PolicyDetails:
        ResourceTypes:
          - "INSTANCE"
        TargetTags:
          - Key: ""
            Value: ""
        Schedules:
          - Name: "Snapshot Schedule"
            TagsToAdd: []
            CreateRule:
              Interval: 24
              IntervalUnit: "HOURS"
              Times:
                - "00:00"
            RetainRule:
              Count: 3
            CopyTags: true
Parameters: {}
Metadata: {}
Conditions: {}

Actions



Customize Template

Policy Settings

Specify Targets

Schedule Settings

Snapshot Retention

Tagging Settings

* Required field