Step 3. Choose Restore Mode
At the Restore Mode step of the wizard, do the following:
- Choose whether you want to restore the selected EC2 instance to the original or to a new location.
If you choose to restore to the original location, consider the following:
- Click Pick account to use to select an IAM identity whose permissions will be used to perform the restore operation:
- To specify an IAM role, select the IAM role option and choose the necessary IAM role from the IAM role drop-down list.
For an IAM role to be displayed in the list of available roles, it must be added to the backup appliance as described in section Adding IAM Roles.
- To specify one-time access keys of an IAM user, select the Temporary access key option, and use the Access key and Secret key fields to provide the access key ID and the secret access key.
By default, to perform restore operations, Veeam Backup & Replication uses permissions of either the Default Backup Restore IAM role, or the IAM role that was used to protect the source EC2 instance, or the IAM role used to update information on restore points that were created for the instance while rescanning AWS infrastructure.
The Default Backup Restore IAM role is assigned all the permissions required to perform data protection and disaster recovery operations in the same AWS account where the backup appliance resides. For more information on the Default Backup Restore IAM role permissions, see Full List of IAM Permissions.