N2WS 3.0.0 How to Check for AWS Permissions
Issue
How do i check if my N2WS server is missing permissions?
Solution
Each account in N2WS is mapped to a specific Roles or IAM user in AWS,
You can see the list of accounts and authentication types in the Account tab:
For each account, you can select it and then click on 'Check AWS Permissions'
This will check the permissions status for the account by category,
If they are fine it will be Green and if something is missing it will be red
What to do If permissions are missing?
you need to make sure you download the latest json policies attached to this KB Article:
Be aware that for some editions you have 2 json policy files, If there are two then you need them BOTH.
Can anything else impact permissions?
1.
Yes, sometimes other AWS configurations might impact permissions,
For example AWS Oragnization SCP(Service Control Policies)
One useful tool which you can use is the AWS Policy Simulator which can help you test for permissions:
2.
If you are doing cross account backup, then IAM Trust relationship can also impact permissions
You can see example on how to set trust relationship for cross account EC2 backup here:
Related Articles
What are the required minimal AWS permissions/roles for CPM operation?
You can apply all the required roles by using the JSON files inside the archive attached to this article (including the new permissions required for v4.0 and up). To apply these permissions in AWS, follow these instructions: 1. Go to the IAM Console ...How to use AWS IAM Policy Simulator to troubleshoot N2WS Backup permission issues.
Background: Permission issues are one of the most common errors seen by users of N2WS Backup and this article explains how you can use the IAM Policy Simulator to help you narrow down whether permissions are allowed by an IAM User or a Role. This ...Permission checks fails with Error: “User not Found”
Permission checks fails with Error: “User not Found” You may receive the following error when checking permissions on an account within CPM. Also, the policy check .CSV file will show only “User not Found” when opened. In the cpm_server logs you ...How to setup cross account/cross region recovery in CPM
Background This document assumes that the main server running Cloud Protection Manager (CPM) is setup according to the minimum-Security requirements document at this link. ...Minimal Azure permissions/roles for N2WS operations
The required minimal IAM permissions json is attached to this KB article. You can find detailed steps in our User guide, Chapter 26: https://n2ws.com/support/documentation Or in the following KB Article: How to setup CPM on AWS to backup Azure ...