By Implementation

Service Control PoliciesConfig RulesAuto Remediation RulesConformance PacksAmazon GuardDutyAmazon InspectorAWS Security HubAWS Network FirewallRoute53 Resolver SecurityAmazon MacieS3 Bucket PoliciesCloudWatch Alarms and Event RulesAWS WAFAWS Secrets ManagerAWS Systems ManagerSecurity Groups & NACLsAWS KMSIAM Policies

By Service Protected

Configuration Packages

Strategy Guides

Other

EC2 Security Controls

Data Lifecycle Manager

Configure a Data Lifecycle Manager (DLM) policy to automate the creation, retention, and deletion of snapshots taken to back up your Amazon EBS volumes.

Configure the following settings: 

  • Targets: Identify target instances or volumes using assigned tags.
  • Schedule: Configure a schedule for snapshots to be taken as well as retention policy.
  • Tags: Configure snapshot tags which can include tags copied from the original volume, as well as additional tags.
  • IAM Role: By default, the CFN template assumes the AWSDataLifecycleManagerDefaultRole IAM role already exists in the account (Which can be created using aws dlm create-default-role CLI command). Alternatively, select the option to create a new IAM role.
AWS Documentation: Automating the Amazon EBS Snapshot Lifecycle
Items
1
Size
0.8 KB
Missing Parameters
AWSTemplateFormatVersion: "2010-09-09"
Description: ""
Resources:
  DataLifecycleManager:
    Type: "AWS::DLM::LifecyclePolicy"
    Properties:
      Description: "DLM Policy"
      State: "ENABLED"
      ExecutionRoleArn:
        Fn::Join:
          - ""
          -
            - "arn:aws:iam::"
            - Ref: "AWS::AccountId"
            - ":role/AWSDataLifecycleManagerDefaultRole"
      PolicyDetails:
        ResourceTypes:
          - "INSTANCE"
        TargetTags:
          - Key: ""
            Value: ""
        Schedules:
          - Name: "Snapshot Schedule"
            TagsToAdd: []
            CreateRule:
              Interval: 24
              IntervalUnit: "HOURS"
              Times:
                - "00:00"
            RetainRule:
              Count: 3
            CopyTags: true
Parameters: {}
Metadata: {}
Conditions: {}

Actions



Customize Template

Policy Settings

Specify Targets

Schedule Settings

Snapshot Retention

Tagging Settings

* Required field