Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Scholarworks(calstate): Backup Restore Tests PLUS Documentation #20

Open
6 of 9 tasks
aprilrieger opened this issue Sep 6, 2023 · 3 comments
Open
6 of 9 tasks

Scholarworks(calstate): Backup Restore Tests PLUS Documentation #20

aprilrieger opened this issue Sep 6, 2023 · 3 comments
Assignees
@aprilrieger
Labels
maintenance bills to maintenance

Comments

@aprilrieger
Copy link

aprilrieger commented Sep 6, 2023
edited
Loading

Backup Restore Tests PLUS Documentation

For scholarworks instance:

Acceptance criteria:

  • Backup and restore test was conducted on staging?? (WHERE?)
  • Documentation exists in the readme (if process is different per application document both)
  • Make tickets for any failures to address at a future date and link to this ticket
@aprilrieger aprilrieger self-assigned this Sep 6, 2023
@aprilrieger aprilrieger changed the title Backup Restore Tests PLUS Documentation Scholarworks(calstate): Backup Restore Tests PLUS Documentation Sep 6, 2023
@aprilrieger aprilrieger added the maintenance bills to maintenance label Sep 6, 2023
@aprilrieger
Copy link
Author

Restore of the efs file system into the new VPC was unsuccessful, here is the screenshot (adding to the list):
Screenshot 2023-10-09 at 13 36 55

Error while completing request: User: arn:aws:sts::657539223582:assumed-role/AWSBackupDefaultServiceRole/AWSBackup-AWSBackupDefaultServiceRole is not authorized to perform: iam:CreateServiceLinkedRole on the specified resource (Service: AmazonElasticFileSystem; Status Code: 403; Error Code: AccessDeniedException; Request ID: 3c7a1c0b-1341-45d3-9b85-796d1fad2711; Proxy: null)

Followed:
Create VPN Network: https://docs.aws.amazon.com/vpc/latest/userguide/vpc-example-dev-test.html#create-vpc-one-public-subnet
Restore form backup:
https://docs.aws.amazon.com/aws-backup/latest/devguide/restoring-a-backup.html
https://docs.aws.amazon.com/aws-backup/latest/devguide/restore-resource.html

@aprilrieger
Copy link
Author

In order to work through the EFS Backup restore issues with the error reported above. We needed to add a new policy:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": "iam:CreateServiceLinkedRole",
            "Resource": "*",
            "Condition": {
                "StringEquals": {
                    "iam:AWSServiceName": "elasticfilesystem.amazonaws.com"
                }
            }
        }
    ]
}

And attach it to the AWSBackupDefaultServiceRole, once that was successfully completed we were able to get the restore started and have a percentage of 11% completed thus far.

@aprilrieger
Copy link
Author

Review of all job this morning and the efs transfer is complete

Image

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@aprilrieger aprilrieger

Labels
maintenance bills to maintenance
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@aprilrieger