aws backup
AWS Backup AWS Backup is a unified backup service designed to protect AWS services and their associated data. AWS Backup simplifies the creation, migration, restoration, and deletion of backups, while also providing reporting and auditing
Subcommands
| Name | Description |
|---|---|
create-backup-plan | Creates a backup plan using a backup plan name and backup rules. A backup plan is a document that contains information that AWS Backup uses to schedule tasks that create recovery points for resources. If you call CreateBackupPlan with a plan that already exists, an AlreadyExistsException is returned |
create-backup-selection | Creates a JSON document that specifies a set of resources to assign to a backup plan. Resources can be included by specifying patterns for a ListOfTags and selected Resources. For example, consider the following patterns: Resources: "arn:aws:ec2:region:account-id:volume/volume-id" ConditionKey:"department" ConditionValue:"finance" ConditionType:"StringEquals" ConditionKey:"importance" ConditionValue:"critical" ConditionType:"StringEquals" Using these patterns would back up all Amazon Elastic Block Store (Amazon EBS) volumes that are tagged as "department=finance", "importance=critical", in addition to an EBS volume with the specified volume ID. Resources and conditions are additive in that all resources that match the pattern are selected. This shouldn't be confused with a logical AND, where all conditions must match. The matching patterns are logically put together using the OR operator. In other words, all patterns that match are selected for backup |
create-backup-vault | Creates a logical container where backups are stored. A CreateBackupVault request includes a name, optionally one or more resource tags, an encryption key, and a request ID. Sensitive data, such as passport numbers, should not be included the name of a backup vault |
delete-backup-plan | Deletes a backup plan. A backup plan can only be deleted after all associated selections of resources have been deleted. Deleting a backup plan deletes the current version of a backup plan. Previous versions, if any, will still exist |
delete-backup-selection | Deletes the resource selection associated with a backup plan that is specified by the SelectionId |
delete-backup-vault | Deletes the backup vault identified by its name. A vault can be deleted only if it is empty |
delete-backup-vault-access-policy | Deletes the policy document that manages permissions on a backup vault |
delete-backup-vault-notifications | Deletes event notifications for the specified backup vault |
delete-recovery-point | Deletes the recovery point specified by a recovery point ID. If the recovery point ID belongs to a continuous backup, calling this endpoint deletes the existing continuous backup and stops future continuous backup |
describe-backup-job | Returns backup job details for the specified BackupJobId |
describe-backup-vault | Returns metadata about a backup vault specified by its name |
describe-copy-job | Returns metadata associated with creating a copy of a resource |
describe-global-settings | Describes the global settings of the AWS account, including whether it is opted in to cross-account backup |
describe-protected-resource | Returns information about a saved resource, including the last time it was backed up, its Amazon Resource Name (ARN), and the AWS service type of the saved resource |
describe-recovery-point | Returns metadata associated with a recovery point, including ID, status, encryption, and lifecycle |
describe-region-settings | Returns the current service opt-in settings for the Region. If service-opt-in is enabled for a service, AWS Backup tries to protect that service's resources in this Region, when the resource is included in an on-demand backup or scheduled backup plan. Otherwise, AWS Backup does not try to protect that service's resources in this Region, AWS Backup does not try to protect that service's resources in this Region |
describe-restore-job | Returns metadata associated with a restore job that is specified by a job ID |
disassociate-recovery-point | Deletes the specified continuous backup recovery point from AWS Backup and releases control of that continuous backup to the source service, such as Amazon RDS. The source service will continue to create and retain continuous backups using the lifecycle that you specified in your original backup plan. Does not support snapshot backup recovery points |
export-backup-plan-template | Returns the backup plan that is specified by the plan ID as a backup template |
get-backup-plan | Returns BackupPlan details for the specified BackupPlanId. The details are the body of a backup plan in JSON format, in addition to plan metadata |
get-backup-plan-from-json | Returns a valid JSON document specifying a backup plan or an error |
get-backup-plan-from-template | Returns the template specified by its templateId as a backup plan |
get-backup-selection | Returns selection metadata and a document in JSON format that specifies a list of resources that are associated with a backup plan |
get-backup-vault-access-policy | Returns the access policy document that is associated with the named backup vault |
get-backup-vault-notifications | Returns event notifications for the specified backup vault |
get-recovery-point-restore-metadata | Returns a set of metadata key-value pairs that were used to create the backup |
get-supported-resource-types | Returns the AWS resource types supported by AWS Backup |
list-backup-jobs | Returns a list of existing backup jobs for an authenticated account for the last 30 days. For a longer period of time, consider using these monitoring tools |
list-backup-plan-templates | Returns metadata of your saved backup plan templates, including the template ID, name, and the creation and deletion dates |
list-backup-plan-versions | Returns version metadata of your backup plans, including Amazon Resource Names (ARNs), backup plan IDs, creation and deletion dates, plan names, and version IDs |
list-backup-plans | Returns a list of existing backup plans for an authenticated account. The list is populated only if the advanced option is set for the backup plan. The list contains information such as Amazon Resource Names (ARNs), plan IDs, creation and deletion dates, version IDs, plan names, and creator request IDs |
list-backup-selections | Returns an array containing metadata of the resources associated with the target backup plan |
list-backup-vaults | Returns a list of recovery point storage containers along with information about them |
list-copy-jobs | Returns metadata about your copy jobs |
list-protected-resources | Returns an array of resources successfully backed up by AWS Backup, including the time the resource was saved, an Amazon Resource Name (ARN) of the resource, and a resource type |
list-recovery-points-by-backup-vault | Returns detailed information about the recovery points stored in a backup vault |
list-recovery-points-by-resource | Returns detailed information about recovery points of the type specified by a resource Amazon Resource Name (ARN) |
list-restore-jobs | Returns a list of jobs that AWS Backup initiated to restore a saved resource, including metadata about the recovery process |
list-tags | Returns a list of key-value pairs assigned to a target recovery point, backup plan, or backup vault. ListTags are currently only supported with Amazon EFS backups |
put-backup-vault-access-policy | Sets a resource-based policy that is used to manage access permissions on the target backup vault. Requires a backup vault name and an access policy document in JSON format |
put-backup-vault-notifications | Turns on notifications on a backup vault for the specified topic and events |
start-backup-job | Starts an on-demand backup job for the specified resource |
start-copy-job | Starts a job to create a one-time copy of the specified resource. Does not support continuous backups |
start-restore-job | Recovers the saved resource identified by an Amazon Resource Name (ARN) |
stop-backup-job | Attempts to cancel a job to create a one-time backup of a resource |
tag-resource | Assigns a set of key-value pairs to a recovery point, backup plan, or backup vault identified by an Amazon Resource Name (ARN) |
untag-resource | Removes a set of key-value pairs from a recovery point, backup plan, or backup vault identified by an Amazon Resource Name (ARN) |
update-backup-plan | Updates an existing backup plan identified by its backupPlanId with the input document in JSON format. The new version is uniquely identified by a VersionId |
update-global-settings | Updates the current global settings for the AWS account. Use the DescribeGlobalSettings API to determine the current settings |
update-recovery-point-lifecycle | Sets the transition lifecycle of a recovery point. The lifecycle defines when a protected resource is transitioned to cold storage and when it expires. AWS Backup transitions and expires backups automatically according to the lifecycle that you define. Backups transitioned to cold storage must be stored in cold storage for a minimum of 90 days. Therefore, the “expire after days” setting must be 90 days greater than the “transition to cold after days” setting. The “transition to cold after days” setting cannot be changed after a backup has been transitioned to cold. Only Amazon EFS file system backups can be transitioned to cold storage. Does not support continuous backups |
update-region-settings | Updates the current service opt-in settings for the Region. If service-opt-in is enabled for a service, AWS Backup tries to protect that service's resources in this Region, when the resource is included in an on-demand backup or scheduled backup plan. Otherwise, AWS Backup does not try to protect that service's resources in this Region. Use the DescribeRegionSettings API to determine the resource types that are supported |