- About Veeam Backup for AWS REST API
- Overview
- How To
- Changelog
- Authorization
- Authorization (Single Sign-On)
- Appliance Connection Test
- Appliance Configuration Overview
- Appliance Statistics
- Appliance System Info
- Amazon Connections
- getGet Collection of Amazon Connections
- postAdd Amazon Connection
- getGet Amazon Connection Data
- delRemove Amazon Connection
- getGet Collection of Availability Zones
- postCheck Permissions for Performing Restore
- postVerify EC2 Instance Details
- postVerify RDS Resource Details
- getGet Collection of Encryption Keys
- getGet Collection of VPCs
- getGet Collection of Security Groups
- getGet Collection of Route Tables
- getGet Collection of Amazon Machine Images
- postVerify EC2 Instance AMI
- getGet Collection of Subnets
- getGet Collection of AWS Outposts
- getGet Collection of Option Groups
- getGet Collection of Parameter Groups
- getGet Collection of Cluster Parameter Groups
- getGet Collection of DB Subnet Groups
- getGet Collection of VPC Security Groups
- getGet Collection of RDS Licenses
- getGet Collection of DB Instance Classes
- getValidate S3 Endpoint
- postValidate Worker Settings
- getGet Collection of AWS Managed Microsoft Active Directories (ADs)
- getGet Collection of Redshift Subnet Groups
- getGet Collection of Redshift Parameter Groups
- getGet Collection of Redshift Node Configurations
- getGet Collection of IAM roles
- getGet Collection of Instance Profiles
- Amazon S3 Buckets
- AWS Regions
- AWS Tags
- Backup Vaults
- Backup Repositories
- Configuration Backup and Restore
- getGet Configuration Backup Settings
- putModify Configuration Backup Settings
- postEnable Configuration Backup Schedule
- postDisable Configuration Backup Schedule
- getGet Configuration Backup Restore Points
- getGet Configuration Backup Restore Point Data
- delRemove Configuration Backup Restore Point
- postCreate Configuration Backup
- postRestore Backup Appliance Configuration
- postCheck Configuration
- getGet Configuration Check Results
- postComplete Configuration Restore
- postStart Configuration Backup Export
- getCheck Status of Configuration Backup Export
- postDownload Configuration Backup File
- postImport Configuration Backup File
- delRemove Imported Configuration Backup File
- postCheck Imported Backup File
- getGet List of Uploaded Configuration Backup Files
- getGet Configuration Backup and Restore Session Data
- Database Accounts
- DynamoDB Backup Policies
- getGet Collection of DynamoDB Backup Policies
- postCreate Backup Policy
- getGet Backup Policy Data
- putModify Backup Policy
- delDelete Backup Policy
- getGet Resources Protected by Backup Policy
- getGet Resources Excluded from Backup Policy
- getGet Resources Protected by DynamoDB Backup Policy
- getGet AWS Regions Selected for Backup Policy
- postEnable Backup Policy
- postDisable Backup Policy
- postStart Backup Policy
- postStop Backup Policy
- postValidate Backup Policy Settings
- postSet Backup Policy Priority
- getExport Backup Policy Settings
- postImport Backup Policy Settings
- postExport Collection of Backup Policies
- postCalculate Estimated Cost for Backup Policy
- getGet Backup Policy Estimated Cost
- DynamoDB Restore Points
- DynamoDB Tables
- EC2 Backup Policies
- getGet Collection of EC2 Backup Policies
- postCreate Backup Policy
- getGet Backup Policy Data
- putModify Backup Policy
- delDelete Backup Policy
- getGet Resources Protected by Backup Policy
- getGet AWS Regions Selected for Backup Policy
- getGet Resources Excluded from Backup Policy
- getGet Resources Protected by EC2 Backup Policy
- postEnable Backup Policy
- postDisable Backup Policy
- postStart Backup Policy
- postStop Backup Policy
- getExport Backup Policy Settings
- postImport Backup Policy Settings
- postValidate Backup Policy Settings
- postSet Backup Policy Priority
- postExport Collection of Backup Policies
- postCalculate Estimated Cost for Backup Policy
- getGet Backup Policy Estimated Cost
- EC2 Instances
- getGet Collection of EC2 Instances
- postPerform Infrastructure Rescan for EC2 Instances
- getGet EC2 Instance Data
- postCreate Snapshot of EC2 Instance
- postRemove Snapshots of EC2 Instance
- postRemove Backups of EC2 Instance
- delRemove Restore Points of EC2 Instance
- getGet EBS Volumes
- postExport Collection of EC2 Instances
- EC2 Restore Points
- getGet EC2 Instance Restore Points
- getGet EC2 Instance Restore Point Data
- postPerform Volume-Level Restore
- postValidate Volume-Level Restore
- postPerform EC2 Instance Restore
- postValidate EC2 Instance Restore
- postPerform EC2 File-Level Restore
- getGet Default Network Settings of Restore Point
- getGet Collection of Data Retrieval Sessions
- getGet Data Retrieval Session Data
- postRetrieve Data From Archive
- postExtend Data Availability Period
- postGet Data Retrieval Sessions for Restore Point
- EFS Backup Policies
- getGet Collection of EFS Backup Policies
- postCreate Backup Policy
- getGet Backup Policy Data
- putModify Backup Policy
- delDelete Backup Policy
- getGet Resources Protected by Backup Policy
- getGet Resources Excluded from Backup Policy
- getGet Resources Protected by EFS Backup Policy
- getGet AWS Regions Selected for Backup Policy
- postEnable Backup Policy
- postDisable Backup Policy
- postStart Backup Policy
- postStop Backup Policy
- postCalculate Estimated Cost for Backup Policy
- getGet Backup Policy Estimated Cost
- postValidate Backup Policy Settings
- postSet Backup Policy Priority
- getExport Backup Policy Settings
- postImport Backup Policy Settings
- postExport Collection of Backup Policies
- EFS File Systems
- EFS Restore Points
- File-Level Recovery
- FSx Backup Policies
- getGet Collection of FSx Backup Policies
- postCreate Backup Policy
- getGet Backup Policy Data
- putModify Backup Policy
- delDelete Backup Policy
- getGet Resources Protected by Backup Policy
- getGet Resources Excluded from Backup Policy
- getGet AWS Regions Selected for Backup Policy
- postEnable Backup Policy
- postDisable Backup Policy
- postStart Backup Policy
- postStop Backup Policy
- postValidate Backup Policy Settings
- postSet Backup Policy Priority
- getExport Backup Policy Settings
- postImport Backup Policy Settings
- postExport Collection of Backup Policies
- postCalculate Estimated Cost for Backup Policy
- getGet Backup Policy Estimated Cost
- FSx File Systems
- FSx Restore Points
- Redshift Backup Policies
- getGet Collection of Redshift Backup Policies
- postCreate Backup Policy
- getGet Backup Policy Data
- putModify Backup Policy
- delDelete Backup Policy
- getGet Resources Protected by Backup Policy
- getGet Resources Excluded from Backup Policy
- getGet AWS Regions Selected for Backup Policy
- postEnable Backup Policy
- postDisable Backup Policy
- postStart Backup Policy
- postStop Backup Policy
- postValidate Backup Policy Settings
- postSet Backup Policy Priority
- getExport Backup Policy Settings
- postImport Backup Policy Settings
- postExport Collection of Backup Policies
- postCalculate Estimated Cost for Backup Policy
- getGet Backup Policy Estimated Cost
- Redshift Restore Points
- Redshift Clusters
- Redshift Serverless Namespaces
- Redshift Serverless Backup Policies
- getGet Collection of Redshift Serverless Backup Policies
- postCreate Backup Policy
- getGet Backup Policy Data
- putModify Backup Policy
- delDelete Backup Policy
- getGet Resources Protected by Backup Policy
- getGet Resources Excluded from Backup Policy
- getGet AWS Regions Selected for Backup Policy
- postEnable Backup Policy
- postDisable Backup Policy
- postStart Backup Policy
- postStop Backup Policy
- postValidate Backup Policy Settings
- postSet Backup Policy Priority
- getExport Backup Policy Settings
- postImport Backup Policy Settings
- postExport Collection of Backup Policies
- Redshift Serverless Restore Points
- Global Retention Settings
- IAM Roles
- Organizations
- postPerform Rescan of AWS Organization Structure
- getGet Collection of AWS Organizations
- postAdd AWS Organization
- getGet AWS Organization Data
- putModify AWS Organization
- delRemove AWS Organization
- postGet AWS Organization Structure Rescan Results
- postGet Structure of AWS Organization Added to Veeam Backup for AWS
- postValidate Removing of AWS Organization
- postValidate Removing of Multiple AWS Organizations
- postCheck AWS Organization Configuration
- postExport Collection of AWS Organizations
- postCheck Adding AWS Organization
- postValidate AWS Organization Name
- postValidate AWS Organization Settings
- Infrastructure
- Identity Provider
- Immutability Settings
- Initial Configuration
- License Agreements
- Licensing
- RDS Backup Policies
- getGet Collection of RDS Backup Policies
- postCreate Backup Policy
- getGet Backup Policy Data
- putModify Backup Policy
- delDelete Backup Policy
- getGet Resources Protected by Backup Policy
- getGet AWS Regions Selected for Backup Policy
- getGet Resources Excluded from Backup Policy
- getGet Resources Protected by RDS Backup Policy
- postEnable Backup Policy
- postDisable Backup Policy
- postStart Backup Policy
- postStop Backup Policy
- getExport Backup Policy Settings
- postImport Backup Policy Settings
- postValidate Backup Policy Settings
- postSet Backup Policy Priority
- postExport Collection of Backup Policies
- postCalculate Estimated Cost for Backup Policy
- getGet Backup Policy Estimated Cost
- RDS Resources
- RDS Restore Points
- getGet RDS Resource Restore Points
- getGet RDS Resource Restore Point Data
- delRemove RDS Resource Restore Point
- postPerform RDS Resource Restore
- postPerform DB Instance Database Restore
- postValidate the RDS Resource Restore from Backup
- postValidate RDS Resource Restore from Snapshot
- getGet RDS Resource Restore Point Databases List
- Security Certificates
- Sessions
- SMTP Accounts
- Time Zone
- User Accounts
- getGet Collection of Users
- postAdd User Account
- getGet Collection of User Roles
- getGet User Data
- putModify User Account
- delRemove User Account
- postValidate User Name
- postValidate User Description
- postValidate User Password
- postGet MFA Secret Key
- postEnable MFA for User
- postDisable MFA for User
- getVerify First Login
- postValidate Backup Appliance Instance ID
- postCreate Default User
- postExport Collection of Users
- Veeam Backup for AWS Version
- VPC Configuration Backup Policy
- VPC Configuration Restore Points
- getGet VPC Configuration Restore Points
- getGet VPC Configuration Restore Point Data
- getGet Backed-Up VPC Configuration Items
- getGet Collection of Backed-Up VPCs
- postCheck IAM Role Permissions
- postCompare VPC Configuration
- postPerform VPC Configuration Restore
- postValidate VPC Configuration Restore
- postExport Backed-Up VPC Configuration
- postRemove VPC Configuration Backups
- Workers
- getGet Collection of Worker Profiles
- postAdd Worker Profiles
- getGet Worker Profiles for Region
- putModify Worker Profiles
- delRemove Worker Profiles
- getGet IAM Role Used to Launch Worker Instances
- putChange IAM Role Used to Launch Worker Instances
- getGet Collection of Worker Configurations
- postAdd Worker Configuration
- getGet Worker Configuration Data
- putModify Worker Configuration
- delRemove Worker Configuration
- getGet Worker Configurations for Production Accounts
- postAdd Worker Configuration for Production Account
- getGet Worker Configuration for Production Account Data
- putModify Worker Configuration for Production Account
- delRemove Worker Configuration for Production Account
- getGet Worker Custom Tags
- putModify Worker Custom Tags
Veeam Backup for AWS REST API authorization process involves obtaining an access token — a string that represents authorization issued to the user and that must be sent in the Bearer <Access-Token> format in the Authorization header in all requests during the current logon session.
The /token resource collection allows a Veeam Backup for AWS user to authenticate himself and authorize his access to the Veeam Backup for AWS REST API. To authenticate a user retrieved from the identity provider, see Authorization (Single Sign-On).
To learn more about the authorization process and security settings, see the Veeam Backup for AWS REST API Reference Overview, section Authorization and Security.
Request Authorization Tokens
The HTTP POST request to the /token endpoint allows you to authorize your access to the Veeam Backup for AWS REST API.
Request
header Parameters
| x-api-version required | string Default: 1.7-rev0 Specifies the current version and revision of the Veeam Backup for AWS REST API. |
Request Body schema: application/x-www-form-urlencodedrequired
| grant_type required | string Grant type that will be used to authenticate a user. |
| username | string [Required if the |
| password | string <password> [Required if the |
| refresh_token | string [Required if the |
| code | string [Required if the |
| mfa_token | string [Required if the |
| mfa_code | string [Required if the |
Responses
200
OK
400
Bad Request. The request body is malformed, incomplete or otherwise invalid.
401
Unauthorized. The authorization header has been expected but not found (or found but is expired).
500
Internal Server Error. The request has been received but could not be completed because of an internal error on the server side.
503
Service Unavailable
504
Gateway Timeout
post/api/v1/token
Request samples
- Payload
- curl
- Python
- JavaScript
- C#
- Go
application/x-www-form-urlencoded
grant_type=password&username=string&password=pa%24%24word&refresh_token=string&code=string&mfa_token=string&mfa_code=string
Response samples
- 200
- 400
- 401
[- {
- "access_token": "eyJhbGciOiJSUzUxMiIsImtpZCI6IjQ2MDU0QjExNTE3Njk0QzAxN0IyRTE2MTQyNURCRDM1QkNGNzY3NkQiLCJ0eXAiOiJKV1QifQ.eyJ1bmlxdWVfbmFtZSI6InVzZXIiLCJuYmYiOjE1ODYyNTUzNzksImV4cCI6MTU4NjI1NjI3OSwiaWF0IjoxNTg2MjU1Mzc5LCJhdWQiOiJhY2Nlc3MifQ.kOCwrbf6BErst5X-ZOK5zSVH9htMN5GJpPkE1MScDM08iHrF4vPZaGGlHGZzvLu6eJmzyM-GA9zG5QAoPQcQCxzhUf4btj6JvUd1thz3BgfSfCvDh_nQUG-WQ5dAkeOL8M7sze6nlHRDJDg1b7D2Ev7BsFg41ip24drWl2wyebZVZXBOwpIsD7rbX1fJW3FHfvEMyes7h8gWruHtqc-6uJnMuA7YJc706rlXHf6wgpLJAaW2qRAwtBUpE6kib9odU58Hc2aS5QqQBwwKX6hTI3ZbBDg_B5KW6xL7rRIMbtTgdEhbDn41WMPhINS9yAFf7sKvdsofStPX31H0Mt1eOg",
- "token_type": "bearer",
- "refresh_token": "eyJhbGciOiJSUzUxMiIsImtpZCI6IjQ2MDU0QjExNTE3Njk0QzAxN0IyRTE2MTQyNURCRDM1QkNGNzY3NkQiLCJ0eXAiOiJKV1QifQ.eyJ1bmlxdWVfbmFtZSI6InVzZXIiLCJ0b2tlbl9pZCI6ImQ5ZDhiN2RlLWIwYjUtNDc1Yi04ZTE4LTU4ZGMzMzVmOWIzNSIsInNob3J0X3Rlcm1fZXhwaXJhdGlvbiI6IkZhbHNlIiwibmJmIjoxNTg2MjU1Mzc5LCJleHAiOjE1ODc0NjQ5NzksImlhdCI6MTU4NjI1NTM3OSwiYXVkIjoicmVmcmVzaCJ9.1R2vkCTmAx28mBg21vq61SYTzZN-wCLyG8SjL3iMofuhUKeZ2oRMNlOSTqZ7v-FxvMTXMIVXBw9WRDIjxMzr182K9E26UcblcUa0Gp8o0fNeCKF_pN0WwYx77Ewzedl9bUmY5rlseOjTU-dQNp-G51mGfn4dU4pEaCxFkX9NCGuJqr4Q9NedoyGXNW6PuAm8gwQnOQjLPWmCzkpaBGZMda41osPyq1bKIL6Be7cen1StTKjiU86OzM1sjIOgG3-hZnfKW5ZyO_fLb-nLeRrOuR65f9peJE3WgVFrmWm0MAtxvPCAq99Nutek2ssI2byNzxc1-hOeD-oZrwm-725G8g",
- "expires_in": 900,
- ".issued": "2020-06-10T10:29:39",
- ".expires": "2020-06-10T10:44:39",
- "username": "administrator"
}
]Logout
The HTTP DELETE request to the /token endpoint performs the logout operation for an authorized user.
SecurityBearer
Request
header Parameters
| x-api-version required | string Default: 1.7-rev0 Specifies the current version and revision of the Veeam Backup for AWS REST API. |
Responses
204
No Content
400
Bad Request. The request body is malformed, incomplete or otherwise invalid.
401
Unauthorized. The authorization header has been expected but not found (or found but is expired).
500
Internal Server Error. The request has been received but could not be completed because of an internal error on the server side.
503
Service Unavailable
504
Gateway Timeout
delete/api/v1/token
Request samples
- curl
- Python
- JavaScript
- C#
- Go
curl -i -X DELETE \ https://helpcenter.veeam.com/api/v1/token \ -H 'Authorization: YOUR_API_KEY_HERE' \ -H 'x-api-version: 1.7-rev0'
Response samples
- 400
- 401
{- "title": "string",
- "status": 400,
- "errorCode": "AccessDenied",
- "details": "string",
- "data": {
- "property1": { },
- "property2": { }
}
}Get Authorization Code
The HTTP POST request to the /token/authorizationCode endpoint returns an authorization code used to obtain an access and a refresh tokens.
NOTE
Only an authorized user can obtain an authorization code.
Only an authorized user can obtain an authorization code.
SecurityBearer
Request
header Parameters
| x-api-version required | string Default: 1.7-rev0 Specifies the current version and revision of the Veeam Backup for AWS REST API. |
Responses
200
OK
400
Bad Request. The request body is malformed, incomplete or otherwise invalid.
401
Unauthorized. The authorization header has been expected but not found (or found but is expired).
403
Forbidden. The user sending a request does not have adequate privileges to access one or more objects specified in the request.
500
Internal Server Error. The request has been received but could not be completed because of an internal error on the server side.
503
Service Unavailable
504
Gateway Timeout
post/api/v1/token/authorizationCode
Request samples
- curl
- Python
- JavaScript
- C#
- Go
curl -i -X POST \ https://helpcenter.veeam.com/api/v1/token/authorizationCode \ -H 'Authorization: YOUR_API_KEY_HERE' \ -H 'x-api-version: 1.7-rev0'
Response samples
- 200
- 400
- 401
- 403
{- "code": "AAEAAJO1R+DANfH7JDlyUzDVYGDw+77dyaa0mFu8nozvbOreW31Uu1X+mejLUilSp6nBrhcmv9/LTjAjMz3P+grbg1OATjZN7kZ5XbhenJG7DrVUtvpA6h5aDmma8INsMv6xW7+TmcOUNlK65n2J2/rQCjg80rMOSjlpnkQkX2s+tXOxkX+h/GTRSdxCulLhn69Rj+8Qvmh3+h8c3g+RVnhfSWwfxVR1+sFtViNQwQzI3hBRvxivb9IZo9WSYgtDJc8816OrUrIn26h71jYm6WfYn3ZiMp/VkABHqvqAsIMuKD1Xat9lnQyxARc1ZU9suM7Ivd5I7Ew51vMMPhXMetchrGkIAAAAWccK8uTa1wg="
}