Creating a Cloud Database Instance for Amazon DynamoDB Using a New AWS Account

Updated

To back up the Amazon DynamoDB database, create an instance for the database. You can create a new AWS account at the same time.

Before You Begin

Define custom permissions to access AWS resources to enable support for Amazon DynamoDB backups and restores. Download the AWS_DynamoDB_permissions.json file and use it on the AWS command line to apply the required permissions.

Procedure

  1. From the navigation pane, go to Protect > Databases.

    The Instances page appears.

  2. Click Add Instance, and then click Cloud DB.

    The Add Cloud DB instance page appears.

  3. From the Select vendor list, select Amazon.

  4. From the Database service list, select DynamoDB.

  5. In the Instance box, type the instance name.

  6. In the Table group box, type the name.

  7. To add a new account, click Add.

    The Add cloud account dialog box appears.

  8. In the Name box, type a name for the new cloud account.

  9. In the Regions box, type the region names that you want to back up, separated by commas. For example, enter us-east-1,us-west-1.

    By default, clusters or instances from all regions are backed up. Choose the regions to back up if any of the following conditions are true:

    • The cloud account does not have access to all the AWS regions due to organizational restrictions.

    • You want to restrict the backups to certain regions.

  10. Enter the host or account authentication information:

    • To use IAM role authentication, click IAM role.

      Note: If you select IAM role authentication, but a proxy that is not associated with the IAM role is used for a backup or restore, the operation fails.

    • To use an access key and secret key pair to access the AWS account, click Access and secret key, and then from the Credentials list select the credential entity.

      The Use service account resources toggle key does not apply to cloud databases.

    • To use an STS assume role with IAM policy to access the AWS account, click STS assume role with IAM policy, and then from the Credentials list select the credential entity.

      The Use service account resources toggle key does not apply to cloud databases.

  11. To select access nodes that have the necessary permissions associated with them in the AWS Console, from the Access nodes list, select access nodes (proxies) or servers to use for the backup and restore operations.

  12. Click Save.

  13. From the Plan list, select the server plan that you want to use for the backup operations.

  14. To increase the throughput and performance of the backup operation, move the Adjust read capacity toggle key to the right, and then select the number of units.

    For more information about managing throughput settings, see Optimizing the Backup Performance for a DynamoDB Table Group.

  15. To filter the Backup content that you want to back up, click Edit, and then select or clear the regions that you want to include or exclude in the backups.

  16. Click Add.

Results

The DynamoDB database instance and a default table group for the instance are created.

For more information about creating a new credential entity, see Creating a Credential Entity.