Amazon Backup is a fully managed, policy-based backup solution that makes it easy to automatically back up your application data across Amazon Web Services services in the cloud as well as on premises. Amazon Backup’s policies provide automated backup scheduling, backup retention management, and lifecycle rules, helping to streamline backup processes. Amazon Backup supports backing up EBS volumes, EC2 instances, RDS databases, Aurora snapshots, DynamoDB tables, EFS file systems, and Storage Gateway volumes and stores your backup data durably and securely using Amazon S3. Amazon Backup’s centralized backup monitoring, backup encryption, and backup access policy features help you to meet internal and regulatory backup compliance requirements.
Centralized backup management
Amazon Backup provides a centralized backup console, a set of backup APIs, and a command line interface to manage backups across the Amazon Web Services services that your applications run on, including Amazon EBS, Amazon RDS, Amazon Aurora, Amazon DynamoDB, Amazon EFS, Amazon FSx, Amazon EC2 and Amazon Storage Gateway. With Amazon Backup, you can centrally manage backup policies that meet your backup requirements and apply them to your Amazon Web Services resources across Amazon Web Services services, enabling you to back up your application data in a consistent and compliant manner. Amazon Backup’s centralized backup console offers a consolidated view of your backups and backup activity logs, making it easier to audit your backups and ensure compliance.
Policy-based backup solution
With Amazon Backup, you can create backup policies called backup plans that enable you to define your backup requirements and then apply them to the Amazon Web Services resources you want backed up. You can create separate backup plans that meet specific business and regulatory compliance requirements, helping to ensure that each of your Amazon Web Services resources are backed up and protected. Backup plans make it easy to implement your backup strategy across your organization and across your applications.
Tag-based backup policies
Amazon Backup allows you to apply backup plans to your Amazon Web Servicesresources by simply tagging them, making it easier to implement your backup strategy across all your applications and ensure that all your Amazon Web Services resources are backed up and protected. Amazon Web Services tags are a great way to organize and classify your Amazon Web Services resources. Integration with Amazon Web Services tags enables you to quickly apply a backup plan to a group of Amazon Web Services resources, so that they are backed up in a consistent and compliant manner.
Automated backup scheduling
Amazon Backup allows you to create backup schedules that you can customize to meet your business and regulatory backup requirements. You can also choose from predefined backup schedules based on common best practices. Amazon Backup will automatically backup your Amazon Web Services resources according to the policies and schedules you define. A backup schedule includes the backup start time, backup frequency, and backup window.
Automated retention management
With Amazon Backup, you can set backup retention policies that will automatically retain and expire backups according to your business and regulatory backup compliance requirements. Automated backup retention management makes it easy to minimize backup storage costs by retaining backups for only as long as they are needed.
Backup activity monitoring
Amazon Backup provides a dashboard that makes it simple to audit backup and restore activity across Amazon Web Services services. With just a few clicks in the Amazon Backup console, you can view the status of recent backup jobs and restore jobs across Amazon Web Services services to ensure that your Amazon resources are properly protected. Amazon Backup integrates with Amazon CloudTrail, which provides you with a consolidated view of backup activity logs that make it quick and easy to audit what and how your resources are backed up. Amazon Backup also integrates with Amazon Simple Notification Service (SNS), which can automatically alert you on backup activity, such as when a backup succeeds or a restore has been initiated.
Amazon Backup Vault Lock
Amazon Backup Vault Lock allows you to protect your backups from deletion or changes to their lifecycle by inadvertent or malicious changes. You can use the Amazon Web Services CLI, Amazon Backup API, or Amazon Backup SDK to apply the Amazon Backup Vault Lock protection to an existing vault or a new one. Amazon Backup Vault Lock works seamlessly with backup policies such as retention periods, cold storage transitioning, cross-account, and cross-Region copy, providing you an additional layer of protection and helping you meet your compliance requirements. Amazon Backup Vault Lock helps you implement safeguards that ensure you are storing your backups using a Write-Once-Read-Many (WORM) model.
Lifecycle management policies
Amazon Backup enables you to meet compliance requirements while minimizing backup storage costs by storing backups in a low-cost cold storage tier. You can configure lifecycle policies that will automatically transition backups from warm storage to cold storage according to a schedule that you define. For more information about lifecycle policies, click here.
Amazon Backup efficiently stores your periodic backups incrementally. The first backup of an Amazon Web Services resource backs up a full copy of your data. For each successive incremental backup, only the changes to your Amazon Web Services resources are backed up. Incremental backups enable you to benefit from the data protection of frequent backups while minimizing storage costs.
Backup data encryption
Amazon Backup encrypts your backup data at rest and in transit, providing a comprehensive encryption solution that secures your backup data and helps meet compliance requirements. Amazon Backup encrypts your backup data using encryption keys managed by the Amazon Key Management Service (KMS), eliminating the need to build and maintain a key management infrastructure. The keys used to encrypt your Amazon Backup data are independent of the keys used to encrypt the resources that the backups are based on. Having separate encryption keys for your production and backup data provides an important layer of protection for your applications.
Backup access policies
With Amazon Backup, you can set resource-based access policies on Backup Vaults. A Backup Vault is a container used for organizing your backups. Resource-based access policies enable you to control access to backups in a Backup Vault across all users, rather than having to define permissions for each user. This provides a simple and secure way to control access to your backups across Amazon Web Services and helps meet your backup compliance requirements.
Amazon EC2 instance backups
Amazon Backup automates backup and recovery jobs for Amazon EC2 at the instance levels without the need for custom scripts or third-party solutions. Customers are now able to schedule backup jobs that include whole EC2 instances, limiting the need to interact with the storage (EBS) layer. Additionally, customers will be able to restore entire EC2 instances from a single recovery point, greatly simplifying the recovery process.
Item-level recovery for Amazon EFS
Amazon Backup offers a fast and easy way for customers to restore an individual file or directory from the backup of an Amazon EFS filesystem. With Amazon Backup, customers can quickly restore an individual file from a centralized console without having to restore entire filesystems, reducing the recovery time from days to hours.
Amazon Backup enables customers to copy backups between Amazon Web Services China (Beijing) Region and Amazon Web Services China (Ningxia) Region, from a central console, making it easier to meet compliance and disaster recovery needs. With Amazon Web Services Backup, customers can copy backups either manually, as on-demand copy or automatically as part of a scheduled backup plan to a different China region. Customers can also recover from those backups in the new China region, reducing the risk of downtime and ensuring disaster recovery and business continuity requirements are met.
There are no upfront costs to use Amazon Backup, and you pay only for the resources you use.
Instantly get access to the Amazon Web Services Free Tier.
Get started building with Amazon Backup in the Amazon Web Services Console.