CPM may fail to add RDS to a policy, if any of the displayed RDS instances have an "inaccessible-encryption-credentials" status
CPM
may fail to add RDS to a policy, if any of the displayed RDS instances has a
"inaccessible-encryption-credentials" status
The
"inaccessible-encryption-credentials" status is visible in the EC2
Console, in the CPM GUI it's displayed as "Ensure this value has at most 20 characters (it has 35)"
If
you found the above text in CPM GUI, please upgrade to the latest 2.1.X version.
Reference
defect number - 58a0cf62ef, fixed in v2.1.3a
Link
to the Release Notes and the latest patch - https://support.n2ws.com/portal/kb/articles/release-notes-for-the-latest-v2-1-x-cpm-patch
Related Articles
Cross-Account and Cross-Region DR of an encrypted RDS database may fail
If cross-region and cross-account backup of an encrypted RDS database is successful, but fails in the cross-region cross-account DR copy, you may see the following error in the cpm logs: ERROR: start_copy_region(dr_rds.py:381) RDS DR copy_snapshot ...Cross-Region DR RDS backup may fail with "Copy failed due to an AWS limitation regarding default encryption key” error
RDS DR backup of encrypted snapshots between different regions may fail with the following error in the Backup log: Error - RDS DR, copy snapshot failed (to DR account) due to an AWS limitation regarding default encryption key (source US East (Ohio), ...CPM may mark a successful RDS DR as failed
On rare occasions, CPM may mark a successful RDS DR as failed in Backup Monitor. When this happens, you can see the following messages in the backup log: Error - RDS DR copy snapshot failed for region “RegionName”….Reason: Cannot create the snapshot ...Backup of RDS may fail with the error “can not take snapshot, db is in stopped state" error
Backup of RDS may fail with the below error: "(database: >DB name>) can not take snapshot, db is in stopped state" This is due to an AWS limitation. AWS automatically backs up a stopped RDS, so there is no need for manual backups: ...CPM may fail to set the "cpm_deleted" tag to RDS Snapshots
Symptom: When performing a cross-account DR Copy of RDS snapshots, using a DR account with “Allow Deleting Snapshots” as False, the RDS snapshots that have exceeded the retention policy, will not have the “cpm_deleted” tag. You will also see the ...