AWS Config Rule: EBS Volumes Protected By Backup Plan
EBS_RESOURCES_PROTECTED_BY_BACKUP_PLAN
Eduardo Van Cauteren
Last Update 9 maanden geleden
Description: Checks if Amazon Elastic Block Store (Amazon EBS) volumes are protected by a backup plan. The rule is NON_COMPLIANT if the Amazon EBS volume is not covered by a backup plan.
Trigger type: Periodic
AWS Region: All supported AWS regions except China (Beijing), Asia Pacific (Jakarta), Middle East (UAE), Asia Pacific (Hyderabad), Asia Pacific (Osaka), Asia Pacific (Melbourne), AWS GovCloud (US-East), AWS GovCloud (US-West), Europe (Spain), China (Ningxia), Europe (Zurich) Region
How to Resolve Manually
The Config Rule will only check your EBS Resources with a particular tag - in this case by default we search for resources with the Tag Key "Environment" and Tag Value "Production". This of course can be changed if desired in the StackZone Console when enabling this rule. Any EBS Resource without the chosen tag key and value will be ignored by this particular Config Rule
To resolve this manually, you need to create a Backup Plan under AWS Backup.
Go to AWS Backup in your AWS Management Console and select Backup Plans in the left menu. Click on Create Backup Plan and select the options based on your needs. We recommend you to select a pre-built template, and indicate a plan name:
You will also need to create a Backup rule, check the following screenshot:
After creating the Backup Rule, create the Backup Plan. Now, you need to assign resources, go down to the Resource assignments section of your Backup plan and click on Assign resources.
Indicate a name, and how you would like to assign resources: The options are by Tags or Resource Id. If you select Resource Id you will find EBS as one of the Resource Type. Fill in the field with the desired Volume ID and click on Assign resources.
After completing this step, your EBS volume will be part of a Backup plan and AWS Backup will generate snapshots according to your Backup rule configuration.
How to Resolve with StackZone
The StackZone AWS Backup feature helps you automate schedules backups of your EC2 Instances, EBS Volumes and RDS Instances. All you need to do is tag your AWS resource with "daily", "weekly" or "monthly" schedule and the AWS Backup feature will ensure a backup of your AWS resource is taken depending on your chosen period.
Check out this feature article and learn how to backup any EC2 instance with just a tag.
Want to know more about StackZone and how to make your cloud management simple and secure?
Check our how it works section with easy to follow videos or just create your own StackZone Account here
