Step 3. Choose Restore Mode

At the Restore Mode step of the wizard, do the following:

Choose whether you want to restore the selected EC2 instance to the original or to a new location.

Note

If you choose to restore to the original location, consider the following:

An IAM role that will be used to perform the restore operation must belong to an AWS account where the selected restore point was created.
The source EC2 instance will be automatically powered off and removed from AWS after the restore process completes successfully.
If private IP addresses that were assigned to the source EC2 instance are in use by the source or any other EC2 instance, the restored EC2 instance will be assigned new private IP addresses.

Click Pick account to use to select an IAM identity whose permissions will be used to perform the restore operation:

To specify an IAM role, select the IAM role option and choose the necessary IAM role from the IAM role drop-down list.

For an IAM role to be displayed in the list of available roles, it must be added to the backup appliance as described in section Adding IAM Roles.

To specify one-time access keys of an IAM user, select the Temporary access key option, and use the Access key and Secret key fields to provide the access key ID and the secret access key.

Note

By default, to perform restore operations, Veeam Backup & Replication uses permissions of either the Default Backup Restore IAM role, or the IAM role that was used to protect the source EC2 instance, or the IAM role used to update information on restore points that were created for the instance while rescanning AWS infrastructure.

The Default Backup Restore IAM role is assigned all the permissions required to perform data protection and disaster recovery operations in the same AWS account where the backup appliance resides. For more information on the Default Backup Restore IAM role permissions, see Full List of IAM Permissions.