Guided Walkthroughs

Configuration Packages

By Implementation

Service Control PoliciesConfig RulesAuto Remediation RulesConformance PacksAmazon GuardDutyAmazon InspectorAWS Security HubAWS Network FirewallRoute53 Resolver SecurityAmazon MacieS3 Bucket PoliciesCloudWatch Alarms and Event RulesAWS WAFAWS Secrets ManagerAWS Systems ManagerSecurity Groups & NACLsAWS KMSAWS SSOIAM PoliciesVPC Endpoint PoliciesCloudFormation Guard RulesLoad BalancersRDS Event SubscriptionsAWS Resource Access Manager (RAM)

By Service Protected

Reference Guides

Other

Guided Walkthroughs

AWS Backup Configuration Guide

Overview

  • Use this guide to configure backup schedules, lifecycle policies, and replication policies for backups including cross-region and cross-account backup replication
  • Backup policies are configured using AWS Backup and support backing up the following AWS resources: EC2, EBS, EFS, DynamoDB, FSx, RDS, Aurora, Neptune, and DocumentDB
  • Important: Make sure that you have a recent scan of your AWS account to ensure an up-to-date view of the AWS environment, configuration, and resources

A premium subscription is required for this content


Configuration

Account Summary

Select AWS account and region to display account summary
Hide Info

Select the AWS account and region in which you wish to configure the backup plan. By selecting an AWS account and region, the following information will be populated: 

  • Existing AWS Backup Vaults
  • Existing EC2, EBS, Aurora, RDS, DynamoDB, EFS, and FSx resources in the account which allows you to select resources by Id for the backup plan (optional)

Note: If you plan to use the default AWS backup vault or create a new vault, and you set resource identification to use tags (instead of resource Ids), then the same configuration template can be applied to any AWS region.

Deploy

Backup Plan Configuration
This template will configure the backup plan as per the settings selected above

Items
2
Size
0.8 KB
AWSTemplateFormatVersion: "2010-09-09"
Description: ""
Resources:
  BackupPlan:
    Type: "AWS::Backup::BackupPlan"
    Properties:
      BackupPlan:
        BackupPlanName: "default-backup-plan"
        BackupPlanRule:
          - RuleName: "backup-rule"
            ScheduleExpression: "cron(0 5 ? *  *)"
            TargetBackupVault: ""
  BackupResourceSelection1:
    Type: "AWS::Backup::BackupSelection"
    Properties:
      BackupPlanId:
        Ref: "BackupPlan"
      BackupSelection:
        SelectionName: "resource-selection"
        IamRoleArn:
          Fn::Join:
            - ""
            -
              - "arn:aws:iam::"
              - Ref: "AWS::AccountId"
              - ":role/aws-service-role/backup.amazonaws.com/AWSServiceRoleForBackup"
Parameters: {}
Metadata: {}
Conditions: {}