Protecting S3 Data in AWS Outposts

Updated

Commvault protects Amazon Simple Storage Service (S3) data in AWS Outposts.

To back up the Amazon S3 buckets of your Amazon S3 service account, you must create an IAM role and launch the EC2 VM with the IAM role having full permission to the S3 buckets.

For more information, see Amazon S3.

What Gets Backed Up

  • Objects

  • Buckets

What Does Not Get Backed Up

  • Files with a trailing slash (/) in the file name are not backed up

S3 Configuration

  • After installing the File System Core, File System, and Cloud Apps packages on the EC2 instance, you must create a virtual client for the Amazon S3 service account that you want to protect. When you create a virtual client, the Commvault software automatically creates an instance, and a default subclient that you use to protect the data.

    The user or the IAM role associated with the EC2 instance must have the following permissions for AWS Outposts: (sample json file with these actions)

    "s3-outposts:GetObject"

    "s3-outposts:PutObject"

    "s3-outposts:PutObjectTagging"

    "s3-outposts:ListBucket"

    "s3-outposts:ListRegionalBuckets"

    "s3-outposts:DeleteObject"

    "s3-outposts:GetAccessPoint"

    "s3-outposts:ListRegionalBuckets"

    "s3-outposts:ListAccessPoints"

    For more information, see Amazon S3 Configuration.

S3 Backup

  • Back up Amazon S3 data objects and buckets that are included in the subclient.

    For more information, see Amazon S3 Backups.

S3 Restore

  • You can browse and restore the backed-up Amazon S3 buckets and objects to a local file system or to the cloud.

    Note: You cannot restore an object to a non-existent bucket. You must create a bucket with access point from the AWS Outposts console.

    For more information, see Amazon S3 Restores.