Permissions
For general requirements for permissions that must be provided to the user account to install and work with Veeam Backup & Replication, see the Permissions section in the Veeam Backup & Replication User Guide. In addition to general port requirements, the permissions listed below must be provided for the Veeam Agent management scenarios.
If you plan to use object storage in the Veeam Agent management infrastructure, make sure user accounts that you plan to use have the required permissions. Keep in mind that depending on the functionality that you use, the list of required permissions differ. Make sure user accounts have permissions described for the following scenarios:
The list of permissions differs depending on the type of the cloud machine you plan to back up:
- Microsoft Azure virtual machines
If you plan to back up Microsoft Azure virtual machines, all required permissions are assigned when you add a Microsoft Azure Compute account to Veeam Backup & Replication. To learn more, see the Creating New Azure AD Application section in the Veeam Backup & Replication User Guide.
- Amazon EC2 instances
If you plan to back up Amazon EC2 instances, make sure the user account that you plan to use have the following permissions:
{ |
Besides the general permissions listed in the Using Object Storage Repositories section in the Veeam Backup & Replication User Guide, some additional permissions are required for object storage in the Veeam Agent management infrastructure. The list of required permissions differs depending on the selected object storage and the way you set your backup infrastructure. To learn more, see the following subsections:
Amazon S3 or S3 Compatible Storage (Including IBM Cloud, Wasabi Cloud)
Consider the following:
- Make sure the account you are using has access to Amazon buckets and folders.
- The ListAllMyBuckets permission is not required if you specify the bucket name explicitly at the Bucket step of the New Object Repository wizard.
- If you plan to use Amazon S3 storage with immutability enabled, see permissions required for immutability in the Using Object Storage Repositories section in the Veeam Backup & Replication User Guide. To learn more about immutability, see Backup Immutability.
The list of permissions below is required for the following configurations:
- You plan to back up data to the Amazon S3 storage.
- You selected direct connection in the object storage settings. To learn more, see the Adding Amazon S3 Object Storage section in the Veeam Backup & Replication User Guide.
or
- You plan to back up data to the S3 compatible storage.
- Direct connection is selected in the object storage settings. To learn more, see the Specify Object Storage Account section in the Veeam Backup & Replication User Guide.
- The Provided by IAM/STS object storage capabilities option is selected for the object storage. To learn more, see the Managing Permissions for S3 Compatible Object Storage section in the Veeam Backup & Replication User Guide.
If you plan to back up data using one of the configurations above, make sure the user account that you use to connect to the object storage have the following permissions:
{ |
The list of permissions below is required for the following configurations:
- You plan to back up data to the Google Cloud storage.
- You configured Helper Appliance in the object storage settings. To learn more, see the Configuring Helper Appliance section in the Veeam Backup & Replication User Guide.
- You selected direct connection in the object storage settings. To learn more, see the Specify Object Storage Account section in the Veeam Backup & Replication User Guide.
If you plan to back up data using the configuration above, make sure the user account that you specify in the Helper Appliance settings have the following permissions:
( |