KB #1025
Amazon Web Services (AWS) IAM permissions for EC2 restore
Product: CloudBerry Backup
Versions: 4.8 and later
Product type: Standalone, Online (MBS)
Platform: Windows, Linux, Mac OS X
Created at: May 16, 2016
Updated at: May 16, 2016
Author:
Article
In order to restore your image level backup as EC2 instance you need to grant the following permissions to your Amazon Web Services user.
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"ec2:ImportInstance",
"ec2:ImportImage",
"ec2:RunInstances",
"ec2:DescribeInstances",
"ec2:MonitorInstances",
"ec2:RequestSpotInstances",
"ec2:RunInstances",
"ec2:StartInstances",
"ec2:TerminateInstances",
"ec2:ModifyInstanceAttribute",
"ec2:CreateTags",
"ec2:CancelImportTasks",
"ec2:StartInstances",
"ec2:DescribeConversionTasks",
"ec2:DescribeImportImageTasks",
"ec2:ImportVolume",
"ec2:DescribeAvailabilityZones",
"ec2:DescribeSecurityGroups",
"ec2:DescribeSubnets",
"ec2:StopInstances",
"ec2:DescribeKeyPairs",
"ami:ListRoles",
"ami:CancelImportTasks",
"s3:ListAllMyBuckets"
],
"Resource": "*",
"Condition": {}
},
{
"Effect": "Allow",
"Action": "s3:*",
"Resource": "arn:aws:s3:::your_bucket_name_goes_here",
"Condition": {}
},
{
"Effect": "Allow",
"Action": "s3:*",
"Resource": "arn:aws:s3:::your_bucket_name_goes_here/*",
"Condition": {}
},
{
"Effect": "Allow",
"Action": "sts:GetFederationToken",
"Resource": "*",
"Condition": {}
},
{
"Effect": "Allow",
"Action": "ses:*",
"Resource": "*",
"Condition": {}
}
]
}Nota bene!
Please change the “your_bucket_name_goes_here” to your bucket name.
