NetBackup™ Web UI Cloud Administrator's Guide
- Introducing the NetBackup web user interface
- Managing cloud assets
- About protecting cloud assets
- Limitations and considerations
- Registering the CloudPoint server with NetBackup
- Configurations for a cloud provider
- Configure snapshot replication
- Protecting applications in-cloud with application consistent snapshots
- Configuring cloud asset discovery interval
- Recovering a cloud asset to its original location
- Recovering a cloud asset to an alternate location
- Perform rollback recovery of cloud assets
- Troubleshooting cloud workload protection issues
IAM Role for AWS Configuration
If the snapshot management server (CloudPoint) is deployed in cloud, AWS configuration can be configured to use IAM role for authentication. See Configurations for a cloud provider.
Before proceeding, ensure the following:
IAM role is configured within AWS. See the Veritas CloudPoint documentation for details.
After you upgrade NetBackup and CloudPoint to the latest version, you need to update the credentials. Run the tpconfig -update command.
Note:
Post upgrade, credentials are updated to support only IAM role.
The following implementations of IAM role are supported:
Source account: In this case, the cloud assets that need to be protected are in the same AWS account as CloudPoint. Thus, AWS cloud is aware of the AWS account ID and role name, you need to only select the region.
Cross account: In this case, the cloud assets that need to be protected are in a different AWS account than CloudPoint. Thus, you need to enter the target account and the target role name details along with the region so that CloudPoint can access those assets. See the Veritas CloudPoint documentation for details.
You need to establish a trust relationship between the source and the target account. For more details, refer to the Across AWS Accounts Using IAM Roles related information in the Amazon Web Services documentation.