My Saved Presets
You must be logged in to view saved presets

Loading Library ...

AWS Backup Vault with Custom Access Policy

Creates an AWS Backup vault and attaches a custom access policy to it, allowing specified backup-related actions.

example

aws_backup_vault



depends_on


lifecycle

ignore_changes

replace_triggered_by

precondition


postcondition



example

aws_backup_vault_policy



depends_on


lifecycle

ignore_changes

replace_triggered_by

precondition


postcondition



example

aws_iam_policy_document

override_policy_documents


source_policy_documents

statement

actions

condition


values


not_actions

not_principals

identifiers

not_resources

principals

identifiers

resources


depends_on


lifecycle

ignore_changes

replace_triggered_by

precondition


postcondition



Terraform Template

data "aws_iam_policy_document" "example" {

  statement {
    actions = ["backup:DescribeBackupVault", "backup:DeleteBackupVault", "backup:PutBackupVaultAccessPolicy", "backup:DeleteBackupVaultAccessPolicy", "backup:GetBackupVaultAccessPolicy", "backup:StartBackupJob", "backup:GetBackupVaultNotifications", "backup:PutBackupVaultNotifications"]
    effect = "Allow"

    principals {
      identifiers = [*]
      type = "AWS"
    }
    resources = [aws_backup_vault.example.arn]
  }
}

resource "aws_backup_vault" "example" {
  name = "example"
}

resource "aws_backup_vault_policy" "example" {
  backup_vault_name = aws_backup_vault.example.name
  policy = data.aws_iam_policy_document.example.json
}

© 2024 asecurecloud. All rights reserved.