Step 11. Finish Working with Wizard
At the Summary step of the wizard, it is recommended that you run the backup policy configuration check before you click Finish — to do that, click Test Configuration. Depending on the option selected at step 3 of the wizard, the following will happen:
- If you have selected the Account option, the configuration check will verify whether IAM roles specified in the backup policy settings have all the permissions required to perform the backup operation, and whether the configured network settings allow worker instance deployment.
- If you have selected the Organization option, the configuration check will verify whether IAM roles specified in the organization settings have all the permissions required to perform the backup operation.
Veeam Backup for AWS will display the Test policy configuration window where you can track the progress and view the results of the configuration check. If some permissions of any IAM role are missing or if the policy settings are not configured properly, the check will complete with errors. You can grant the missing permissions either in the Veeam Backup for AWS Web UI (for IAM roles specified in the backup policy settings) as described in section Checking IAM Role Permissions, or in the AWS Management Console (for IAM roles specified in the organization settings) as described in Appendix B. Creating IAM Policies in AWS.
Tip |
To help you grant missing permissions in the AWS Management Console, Veeam Backup for AWS allows you to download the full list of these permissions as a single JSON policy document. To do that, click Export Missing Permissions. |
Veeam Backup for AWS will save the configured backup policy.
- To prevent the backup policy from failing, disable it. For more information, see Disabling and Enabling Policies.
- Depending on the error message received after the backup policy check, do the following:
- Make sure that network settings are configured for each AWS Region selected at step 3.2 of the wizard. For information on how to configure network settings for AWS Regions, see Managing Worker Configurations.
- Make sure that VPCs specified in network settings for AWS Regions have access to the required AWS services. The required AWS services are listed in the Planning and Preparation section.
- After network issues are fixed, you can enable the backup policy. For more information, see Disabling and Enabling Policies.