At the Account step of the wizard, select how Veeam Backup for AWS will access AWS resources to perform restore to the target location:
You can use an IAM role to let Veeam Backup for AWS access AWS resources required for restore. Depending on the restore mode, the IAM role must have permissions to modify the original EC2 instance or create EBS volumes in the target location. For details, see this Veeam KB article.
To use an IAM role for restore:
- Select IAM Role.
- Select the necessary IAM role from the list.
If you have not added the necessary IAM role to Veeam Backup for AWS beforehand, you can do it without closing the Volume Restore wizard. To configure the connection, click Add on the right and follow the steps described in the Adding IAM Roles section.
You can use one-time access keys of an IAM user to let Veeam Backup for AWS access AWS resources required for restore. Depending on the restore mode, the IAM user must have permissions to modify the original EC2 instance or create EBS volumes in the target location. For details, see this Veeam KB article.
To use one-time access keys for restore:
- Select Temporary Access Keys.
- In the Access Key field, specify an access key ID of the IAM user.
- In the Secret Key field, specify a secret access key of the IAM user. To view the entered secret key, click and hold the eye icon on the right of the field.
Veeam Backup for AWS does not store provided access keys in the configuration database.
