To back up and restore PostgreSQL data on the Amazon cloud application, verify that your environment has the required software and a firewall.
Software Requirements
-
Packages required on access nodes:
-
Virtual Server Agent
-
PostgreSQL Agent
-
-
Access nodes that you run backup and restore operations on must have one of the following operating systems:
|
Operating system |
Processor architecture |
|---|---|
|
Amazon Linux 2023 AMI |
|
|
Amazon Linux 2 AMI (HVM) - Kernel 5.10, SSD Volume Type |
|
|
CentOS 9.x, 8.x |
|
|
Oracle Linux Enterprise 9.x, 8.x |
|
|
Red Hat Enterprise Linux (RHEL) 9.x, 8.x |
|
|
Rocky Linux 9.x, 8.x |
|
|
Windows 2022, 2019, 2016 |
|
Note
-
If you have network configuration enabled on the access nodes, before you deploy a Windows or a Linux proxy, configure a firewall on the cloud proxy and on-premises. For more information, see Configuring a Firewall to Install the Virtual Server Agent on a Cloud VM or Instance.
-
Amazon Linux 2023 on 64-bit (Arm) and 64-bit (x86) are supported for PostgreSQL 15.x and 16.x only. For more information, go to AWS documentation on supported packages.
-
Containers can serve as access nodes as long as the PostgreSQL server is accessible from the container environment. For more information about setting up an access node container, see Installing Commvault Packages in Kubernetes Using Helm.
Supported PostgreSQL Versions
From PostgreSQL version 12.x - 17.x.
Note
-
The PostgreSQL version 15.x support is added with Commvault Maintenance Release 11.32.16 (or a more recent version).
-
The PostgreSQL version 16.x support is added with Commvault Maintenance Release 11.32.55 (or a more recent version).
-
The PostgreSQL version 17.x support is added with Commvault Maintenance Release 11.36.32 (or a more recent version).
User Account Requirements
-
For DumpBasedBackupSet, verify that the PostgreSQL instance has a user account with sufficient privileges to perform the following:
-
Perform backup and restore operations of the database objects as part of the subclient content
The following table illustrates the necessary privileges the user account should have to perform backup and restore operations:
Operations
Privileges PostgreSQL User Should Have
Backup
CREATEDB, CREATEROLE
Restore
CREATEDB, CREATEROLE, INHERIT, LOGIN
CONNECTION LIMIT, if set, should at least have a value of 2.
Initially, the user account credentials are provided during the instance configuration after the installation of the agent. You can change the user account at the instance level.
Note
You may need to grant other privileges to the PostgreSQL backup user to secure the objects in the database. To know more about database roles and privileges, see PostgreSQL documentation.
-
-
You do not require a root user account to install or operate the export-based backup and recovery solution. Use a non-root user account with sudo privileges for the installation and operations. For more information, see installation of UNIX agents by a non-root user with sudo privileges.
-
You require SELECT privileges on all tables and objects within the schema or databases being backed up.
The following statements are valid for PostgreSQL:
-
Version 14 or above
- GRANT pg_read_all_data to user_name;
-
Version 13 or below
- GRANT SELECT ON ALL TABLES IN SCHEMA schema_name TO user_name;
-
SSL and TLS Support
The supported TLS versions to create Amazon SSL encrypted PostgreSQL instances are TLS 1.0, 1.1 and 1.2.