Veeam Backup for AWS 9
User Guide
Archive
Version 8.0 Version 7.0
Related documents
Search

Step 3. Specify Restore Settings

At the Account step of the wizard, choose whether you want to use an IAM role, an AWS account or one-time access keys of an IAM user to allow Veeam Backup & Replication to perform the restore operation. For information on the permissions that the IAM role or IAM user must have to perform the restore operation, see RDS Instance Restore IAM Permissions.

Specifying IAM Role

To specify an IAM role to be used for the restore operation, select the IAM role option. By default, Veeam Backup & Replication automatically chooses an IAM role from the same AWS account to which the source DB instances belong. You can also choose a role manually — however, keep in mind that the selected role must belong to an AWS account to which you plan to restore DB instances. For an IAM role to be displayed in the list of available roles, it must be added to the backup appliance as described in section Adding IAM Roles. 

Specifying AWS Account

To specify an AWS account to be used for the restore operation, select the Organization account option. By default, Veeam Backup & Replication automatically chooses the AWS account to which the source DB instances belong and the organization identity that includes the account. You can also choose an account and identity manually:

  1. From the Organization drop-down list, choose the necessary organization identity — either an entire AWS Organization or a scope of organizational units.

For an organization or a scope of organizational units to be displayed in the list of available identities, it must be added to the backup appliance as described in section Managing AWS Organizations.

  1. From the Account drop-down list, choose an account that contains the IAM role whose permissions will be used to perform the restore operation. The role must be specified in the settings of the selected organization identity added to the backup appliance, as described in section Adding AWS Organizations (step 3).

For an AWS account to be displayed in the list of available accounts, it must be part of the selected organization identity, it must be created in the the selected organization identity as described in AWS Documentation.

Specifying One-Time Access Keys

To specify one-time access keys to be used for the restore operation, select the Temporary access keys option, and use the Access key and Secret key fields to provide the access key ID and the secret access key. The specified one-time access keys must belong to an AWS account to which you plan to restore DB instances.

Note

Veeam Backup & Replication does not store one-time access keys in the configuration database.

Restore RDS - Account

Page updated 3/26/2025

Page content applies to build 9.0.0.304

View all results across Veeam
Back to document search