AWS Backup not creating backups with AWS Organizations
I’m trying to set up AWS Backup with AWS Organizations and I’m having trouble getting the backups to be created. Here are the steps I’ve taken:
In AWS Organizations, I went to policies and enabled backup policies.
I created a backup policy with the following JSON:
{
"plans": {
"main-backup-plan-eu-central-1": {
"regions": {
"@@assign": [
"eu-central-1"
]
},
"rules": {
"main-backup-vault-eu-central-1": {
"schedule_expression": {
"@@assign": "cron(6 20/1 ? * * *)"
},
"start_backup_window_minutes": {
"@@assign": "60"
},
"complete_backup_window_minutes": {
"@@assign": "120"
},
"lifecycle": {
"delete_after_days": {
"@@assign": "14"
}
},
"target_backup_vault_name": {
"@@assign": "backup-vault"
}
}
},
"selections": {
"tags": {
"backup-assignment": {
"iam_role_arn": {
"@@assign": "arn:aws:iam::$account:role/cross-account-backup-role"
},
"tag_key": {
"@@assign": "bkp_schedule"
},
"tag_value": {
"@@assign": [
"hourly"
]
}
}
}
}
}
}
}
I set the target to my AWS dev account.
In the dev account, I created a backup vault and an IAM role named cross-account-backup-role with the AWSBackupServiceRolePolicyForBackup and AWSBackupServiceRolePolicyForRestores policies attached.
Then i added the tag to an EC2.
Despite these steps, the backup plan is running but no backups are being created. The resources I want to back up have the bkp_schedule tag with the value hourly.
Does anyone know what might be causing this issue or how I can troubleshoot it further?
The problem was because of vault name. The name in the account was backup_vault instead of backup-vault.
- AWS Lambda No module named 'regex._regex'
- Unable to resolve " not a valid key=value pair (missing equal-sign) in Authorization header" when POSTing to api gateway
- How to reset EC2 ubuntu instance?
- How to zip files properly on mac for unzipping via python from s3?
- Issues generating CloudFront signed URLs; always Access Denied
- AWS EventBridge Pipeline - Self Managed Kafka filter not working
- aws lambda function triggering multiple times for a single event
- Trying to create AWS spot datafeed, getting error: InaccessibleStorageLocation
- Can't see my EC2 instances on the management console?
- React web app Auth UserPool not configured
- How to retrieve usage on Amazon S3 based on tag?
- AWS Amplify: How to delete the environment, when resources are already partially deleted?
- Interactive shell in Docker image with Amazon ECS with `aws ecs run-task` followed by `aws ecs execute-command`
- Terraform v0.11.1 : Error downloading modules: Error loading modules: open .terraform/modules/3f10921295c292995128e9e36eb: no such file or directory
- Ansible - include vars file from remote host
- How to change AWS Lamp apache root directory?
- AWS Codeartifact and Poetry auth problems with private packages
- S3 Intelligent - Tiering with snowflake managed iceberg tables
- InvalidClientTokenId error aws when trying to get caller identity
- AWS Route 53: cost of having a subdomain on another DNS provider than AWS
- Unable to connect from MySQL Workbench to AWS RDS instance
- Querying timestamp data in Athena when the timestamp format in the underlying JSON files has changed
- Difference between AWS::IAM::Policy and AWS::IAM::ManagedPolicy
- During an aborted deployment, some instances may have deployed the new application version
- API Gateway V2 private integration to application load balancer always returns 503
- AWS ELB -> Backend Server over HTTPS with Self-Signed Certificate
- ELB to backend server using HTTPS with self-signed certificate
- How to pass different principals when deploying a bucket policy using terraform
- Clarification for AWS auto-scaling of instances
- Instances scaling (by ASG) but no new tasks being created