Step 3. Configure Repository Settings
At the Settings step of the wizard, configure settings for the backup repository:
- In the IAM role section, specify an IAM role whose permissions Veeam Backup for AWS will use to access the target Amazon S3 bucket. For more information on permissions required for the IAM role, see Repository IAM Role Permissions.
For an IAM role to be displayed in the IAM role list, it must be added to Veeam Backup for AWS as described in Adding IAM Roles. If you have not added the necessary IAM role to Veeam Backup for AWS beforehand, you can do it without closing the Add Repository wizard. To add an IAM role, click Add and complete the Add IAM Role wizard.
- In the Location section, do the following:
- Specify an Amazon S3 bucket where you want to store image-level backups of EC2 instances and VPC configuration backups.
- Click the link to the right of Bucket.
- In the Choose bucket window, select the Amazon S3 bucket that will be used as a target location for image-level backups, and click Apply.
For an Amazon S3 bucket to be displayed in the Bucket list, it must be created within an AWS account to which the specified IAM role has permissions. To learn how to create an Amazon S3 bucket, see AWS Documentation.
It may take some time for Veeam Backup for AWS to retrieve information about existing storage buckets from AWS. To speed up the data collection process, click Rescan.
If you have any S3 Lifecycle configuration associated with the selected Amazon S3 bucket, limit the scope of lifecycle rules applied to Amazon S3 objects in the bucket so that no rules are applied to backup files created by Veeam Backup for AWS. Otherwise, the files may be unexpectedly deleted or transitioned to another storage class, and Veeam Backup for AWS will not be able to access the files. For more information on managing S3 Lifecycle configurations, see AWS Documentation.
- Choose whether you want to use an existing folder inside the selected Amazon S3 bucket or to create a new one to group backup files stored in the bucket.
- To use an existing folder, click the link to the right of Use existing folder. In the Choose folder window, choose the necessary folder and click Select.
For a folder to be displayed in the Folder list, it must have been created by any backup appliance as a repository (either existing or already removed from the backup infrastructure) in the selected Amazon S3 bucket.
If you choose an existing folder for storing backup files, mind the following:
- To create a new folder, select the Create new folder option, and then specify a name for the new folder. The maximum length of the name is 125 characters; the dash (/) character is not supported.
- [This step applies if you selected the Create new folder option] From the Storage class drop-down list, select a storage class for the backup repository:
- To store backups in high-availability and high-performance storage that you plan to access frequently, select S3 Standard.
- To store backups in the secure, durable and low-cost archive storage class that you plan to access infrequently, select S3 Glacier.
- To store backups in the lowest-cost archive storage class that you plan to access once or twice a year, select S3 Glacier Deep Archive.
For more information on Amazon S3 storage classes, see AWS Documentation.
When you select the S3 Glacier or S3 Glacier Deep Archive storage class for a backup repository, Veeam Backup for AWS does not create any S3 Glacier vaults in your AWS environment. Veeam Backup for AWS assigns the selected storage class to backups stored in the repository. That is why the archived backups remain in Amazon S3 and cannot be accessed directly through the Amazon S3 Glacier service.