To start working with Veeam Backup for AWS, complete the following steps.
- Add IAM roles.
Veeam Backup for AWS uses permissions of IAM roles to access AWS services and resources while performing data protection and disaster recovery operations. For more details, see IAM Roles.
If you plan to back up and restore EC2 instance data within the initial AWS account, you can use the Default Backup Restore IAM role that is added to Veeam Backup for AWS upon the product installation.
If you plan to protect EC2 instances of another AWS account, or keep backed-up data in another AWS account, you must add IAM roles that have permissions on AWS services and resources of that account. For details on how to add IAM roles to Veeam Backup for AWS, see Adding IAM Roles.
- Configure backup infrastructure.
- Configure an S3 repository.
Veeam Backup for AWS uses an Amazon S3 bucket as a target location for EC2 instance image-level backups. To add an Amazon S3 bucket to Veeam Backup for AWS, configure an S3 repository. For more details, see Adding S3 Repositories.
This step is not required if you plan to protect EC2 instances only with cloud-native snapshots or snapshot replicas.
- Configure network settings for worker instances.
To perform most data protection and disaster recovery operations, Veeam Backup for AWS uses worker instances. Worker instances are launched for the duration of the backup or restore process. In worker instance settings, you must specify the Amazon VPC, subnet, and security group to which worker instances must be connected.
- Configure backup policies to create cloud-native snapshots, snapshot replicas and image-level backups of EC2 instances.
For details, see Creating Backup Policies.
- Perform recovery operations with backed-up data in case of a disaster.
For details, see Data Recovery.