N2WS 3.0.0 How to Check for AWS Permissions

N2WS 3.0.0 How to Check for AWS Permissions


How do i check if my N2WS server is missing permissions?


Each account in N2WS is mapped to a specific Roles or IAM user in AWS,
You can see the list of accounts and authentication types in the Account tab:


For each account, you can select it and then click on 'Check AWS Permissions'

This will check the permissions status for the account by category,
If they are fine it will be Green and if something is missing it will be red

What to do If permissions are missing?

you need to make sure you download the latest json policies attached to this KB Article:
  1. Link: What are the required minimal AWS permissions/roles for CPM operation?
Be aware that for some editions you have 2 json policy files, If there are two then you need them BOTH.

Can anything else impact permissions?

Yes, sometimes other AWS configurations might impact permissions,
For example AWS Oragnization SCP(Service Control Policies) 
One useful tool which you can use is the AWS Policy Simulator which can help you test for permissions:
  1. https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_testing-policies.html
If you are doing cross account backup, then IAM Trust relationship can also impact permissions 
You can see example on how to set trust relationship for cross account EC2 backup here:
  1. N2WS 3.0 - creating a backup for EC2 instance in another account