AWS Backups CloudFormation Templates
AWS Backup
Use AWS Backup to centralize and automate data protection across AWS services and hybrid workloads. AWS Backup offers a cost-effective, fully managed, policy-based service that further simplifies data protection at scale. AWS Backup also helps you support your regulatory compliance or business policies for data protection. Together with AWS Organizations, you can use AWS Backup to centrally deploy data protection policies to configure, manage, and govern your backup activity across your company’s AWS accounts and resources.
Challenges:
1. The whole backup configuration is done using a cloud formation template
2. All the required configuration details can be mentioned in the cloud formation template
3. The manual process of deployment was updated to cloud formation automation
Solution Overview:
1. A backup plan is a scheduler for backups. You can specify when Retention should be done in a Parameter.
2. AWS Backup can be fully automated by using AWS CloudFormation. In this example, I show you how to backup all currently supported resource types (EBS, RDS, DynamoDB, EFS)
Git Repo: https://github.com/kkpkishan/AWS-backups-templates
Steps:
- Create Backup Using CloudFormation.
This example consists of four CloudFormation resources:
1. An IAM Role: AWS Backup needs a service role to do its work in your AWS account. It uses an AWS-managed IAM policy to minimize the work to be done here.
2. A basic backup vault BackupVault is the container for the backups.
3. A backup plan tells AWS Backup to back up resources each day at five o’clock in the morning. The syntax used by AWS Backup is the same as in CloudWatch Events.
4. A backup selection that looks for resources being tagged with backup / true.
