Adding S3 buckets for Server Backup

If you manage Server Backup for multiple customers or sites, you can add additional S3 buckets for Server Backup data after the initial storage setup. The S3 buckets must meet the requirements listed in Amazon S3 buckets for Server Backup storage.

After adding an S3 bucket, you must update the IAM role in your AWS account so that Server Backup agents can back up data to and restore data from the new S3 bucket.

To add S3 buckets for Server Backup:

  1. In the navigation pane, go to Server Backup > Backup Storage.

    If you cannot view this page, storage for Server Backup data is not set up in your Management Console or you do not have permission to manage Server Backup storage. For more information, see Setting up Server Backup storage or Account types, permissions and roles.

  2. Click Add Backup Storage.

  3. On the Backup Storage page, in the S3 Bucket(s) box, type the name of each S3 bucket that you want to add for storing Server Backup data. Separate multiple bucket names with commas or spaces, or press Enter after typing each bucket name. Click Next.

    Only enter S3 bucket names that already exist in your Amazon S3 account. Each bucket must meet the requirements described in Amazon S3 buckets for Server Backup storage.

  4. On the IAM Role page, do one of the following to update the IAM role in your AWS account that allows Server Backup agents to access specified S3 buckets:

    • To update the IAM role using a CloudFormation template, click Download Template.

      You can then sign in to your AWS account and use the downloaded template to update the IAM role. To do this, in the AWS CloudFormation console, make a direct update to your previously-created stack and replace the existing template with the template you just downloaded. For more information, see AWS CloudFormation documentation from Amazon Web Services. For permissions information, see Permissions for creating the IAM role using a CloudFormation template.

      IMPORTANT: If you are an administrator for an MSP or partner with more than one Management Console, and use the same AWS account for all of your Server Backup storage, do not download and use CloudFormation templates when adding S3 buckets. Instead, update the IAM role manually. See Updating the IAM role for new S3 buckets on AWS IAM role for Server Backup agents.

    • To update the required role in your AWS account without using a CloudFormation template, use the AWS Management Console, an IaC product such as Terraform, or another method to add the name of each new S3 bucket in the IAM role in your AWS account. For IAM role requirements, see AWS IAM role for Server Backup agents.

  5. After you create the IAM role for Server Backup agents, select I have created/updated the IAM role in the AWS management console, click Validate and then check whether validation for each S3 bucket has passed.

    If validation fails for an S3 bucket, click Failed in the Status column to view error information. Check that the bucket meets the requirements listed in Amazon S3 buckets for Server Backup storage and can be accessed using the role created in Setting up Server Backup storage.