Skip to content

Policy: AWSBackupServiceRolePolicyForBackup

ARN: arn:aws:iam::aws:policy/service-role/AWSBackupServiceRolePolicyForBackup

Allowed Actions

Actions Services
backup:CopyFromBackupVault backup
backup:CopyIntoBackupVault backup
backup:DescribeBackupVault backup
backup:TagResource backup
backup-gateway:Backup backup-gateway
backup-gateway:ListTagsForResource backup-gateway
cloudformation:DescribeStacks cloudformation
cloudformation:GetTemplate cloudformation
cloudformation:ListStackResources cloudformation
cloudformation:ListStacks cloudformation
dynamodb:CreateBackup dynamodb
dynamodb:DeleteBackup dynamodb
dynamodb:DescribeBackup dynamodb
dynamodb:DescribeTable dynamodb
dynamodb:ListTagsOfResource dynamodb
dynamodb:StartAwsBackupJob dynamodb
ec2:CopyImage ec2
ec2:CopySnapshot ec2
ec2:CreateImage ec2
ec2:CreateSnapshot ec2
ec2:CreateTags ec2
ec2:CreateTags ec2
ec2:DeleteSnapshot ec2
ec2:DeleteSnapshot ec2
ec2:DeregisterImage ec2
ec2:DescribeElasticGpus ec2
ec2:DescribeImages ec2
ec2:DescribeInstanceAttribute ec2
ec2:DescribeInstanceCreditSpecifications ec2
ec2:DescribeInstances ec2
ec2:DescribeNetworkInterfaces ec2
ec2:DescribeSnapshotTierStatus ec2
ec2:DescribeSnapshots ec2
ec2:DescribeSnapshots ec2
ec2:DescribeSpotInstanceRequests ec2
ec2:DescribeTags ec2
ec2:DescribeVolumes ec2
ec2:ModifyImageAttribute ec2
ec2:ModifySnapshotAttribute ec2
ec2:ModifySnapshotTier ec2
elasticfilesystem:Backup elasticfilesystem
elasticfilesystem:DescribeTags elasticfilesystem
fsx:CopyBackup fsx
fsx:CreateBackup fsx
fsx:DeleteBackup fsx
fsx:DescribeBackups fsx
fsx:DescribeFileSystems fsx
fsx:DescribeVolumes fsx
fsx:ListTagsForResource fsx
fsx:ListTagsForResource fsx
fsx:ManageBackupPrincipalAssociations fsx
fsx:TagResource fsx
kms:CreateGrant kms
kms:Decrypt kms
kms:DescribeKey kms
kms:GenerateDataKey kms
kms:GenerateDataKeyWithoutPlaintext kms
rds:AddTagsToResource rds
rds:CopyDBClusterSnapshot rds
rds:CopyDBSnapshot rds
rds:CreateDBClusterSnapshot rds
rds:CreateDBSnapshot rds
rds:DeleteDBClusterAutomatedBackup rds
rds:DeleteDBClusterSnapshot rds
rds:DeleteDBInstanceAutomatedBackup rds
rds:DeleteDBSnapshot rds
rds:DescribeDBClusterAutomatedBackups rds
rds:DescribeDBClusterSnapshots rds
rds:DescribeDBClusters rds
rds:DescribeDBInstances rds
rds:DescribeDBSnapshots rds
rds:ListTagsForResource rds
rds:ModifyDBCluster rds
rds:ModifyDBClusterSnapshotAttribute rds
rds:ModifyDBInstance rds
rds:ModifyDBSnapshotAttribute rds
redshift:CreateClusterSnapshot redshift
redshift:CreateTags redshift
redshift:DeleteClusterSnapshot redshift
redshift:DescribeClusterSnapshots redshift
redshift:DescribeClusters redshift
redshift:DescribeTags redshift
redshift-serverless:CreateSnapshot redshift-serverless
redshift-serverless:DeleteSnapshot redshift-serverless
redshift-serverless:GetNamespace redshift-serverless
redshift-serverless:GetSnapshot redshift-serverless
redshift-serverless:ListNamespaces redshift-serverless
redshift-serverless:ListSnapshots redshift-serverless
redshift-serverless:ListTagsForResource redshift-serverless
redshift-serverless:TagResource redshift-serverless
ssm:CancelCommand ssm
ssm:GetCommandInvocation ssm
ssm:SendCommand ssm
ssm-sap:BackupDatabase ssm-sap
ssm-sap:GetDatabase ssm-sap
ssm-sap:GetOperation ssm-sap
ssm-sap:ListDatabases ssm-sap
ssm-sap:ListTagsForResource ssm-sap
ssm-sap:UpdateHanaBackupSettings ssm-sap
storagegateway:CreateSnapshot storagegateway
storagegateway:ListTagsForResource storagegateway
tag:GetResources tag
timestream:DescribeDatabase timestream
timestream:DescribeEndpoints timestream
timestream:DescribeTable timestream
timestream:GetAwsBackupStatus timestream
timestream:ListDatabases timestream
timestream:ListTables timestream
timestream:ListTagsForResource timestream
timestream:StartAwsBackupJob timestream