Creating a Cloud Database Instance for Amazon DynamoDB Using a New AWS Account

To back up the Amazon DynamoDB database, create an instance for the database. You can create a new AWS account at the same time.

Before You Begin

Define custom permissions to access AWS resources to enable support for Amazon DynamoDB backups and restores. Download the AWS_DynamoDB_permissions.json file and use it on the AWS command line to apply the required permissions.

Procedure

1. From the navigation pane, go to Protect > Databases.

   The database overview page appears.

2. Click Add Instance, and then click Cloud database service.

   The Vendor page appears.

3. Select Amazon Web Services and click NEXT.

   The Select a Database Service page appears.

4. Select DynamoDB and click NEXT.

   The Select a Plan page appears.

5. From the Plan list, select the backup plan to use for the instance, and then click NEXT.

   The Cloud Account page appears.

6. Beside the Cloud account list, click +.

   The Add cloud account dialog box appears.

   Note

   You can only create one database instance per region using a specific cloud account.

7. In the Server name box, type a name for the new cloud account.

8. In the Regions box, type the region names that you want to back up, separated by commas. For example, enter us-east-1,us-west-1.

   By default, clusters or instances from all regions are backed up. Choose the regions to back up if any of the following conditions are true:

   • The cloud account does not have access to all the AWS regions due to organizational restrictions.

   • You want to restrict the backups to certain regions.

9. Enter the host or account authentication information:

   • To use IAM role authentication, click IAM role.

     Note

     If you select IAM role authentication, but an access node that is not associated with the IAM role is used for a backup or restore, the operation fails.

   • To use an STS assume role with IAM policy to access the AWS account, click STS assume role with IAM policy, and then from the Credentials list select the credential entity.

     The Use service account resources toggle key does not apply to cloud databases.

   • To use an access key and secret key pair to access the AWS account, click Access and secret key, and then from the Credentials list select the credential entity.

     The Use service account resources toggle key does not apply to cloud databases.

10. To select access nodes that have the necessary permissions associated with them in the AWS Console, from the Access nodes list, select access nodes to use for the backup and restore operations.

11. Click SAVE.

12. Click NEXT.

    The Cloud Database Instance Details page appears.

13. From the Region list, select a region for your instance.

14. In the Instances box, update the instance name as required.

15. In the Staging bucket path box, enter the path to stage the data temporarily. Alternatively, click Browse to locate the path.

    Note

    Staging path should be of the same region as the S3 path.

16. Click NEXT.

    The Backup Content page appears.

17. To filter the content that is backed up, click EDIT, and then select or clear the regions to include or exclude from the backups, and then click SAVE.

18. Click NEXT.

    The Summary page appears.

19. Review the configuration details for the new instance created.

20. Click FINISH.

Results

The DynamoDB database instance and a default table group for the instance are created.

Related Topics

• For information about editing the data streams, see Optimizing the Backup Performance for a DynamoDB Table Group.

• For more information about creating a new credential entity, see Creating a Credential Entity.