- Newest
- Most votes
- Most comments
You need to make sure of following:
- Roles at restoration account must have access to:
a. Other account s3 bucket where backup is saved
b. KMS key of other account s3 bucket
- At other account, where s3 bucket has backup:
a. s3 bucket policy must allow access to the role which is being used to restore.
b. KMS key policy must allow access to the role which is being used to restore.
Refer this blog post.
Hope it helps.
Abhishek
Hi, please, follow https://aws.amazon.com/blogs/database/setting-up-for-cross-account-native-backup-and-restore-in-amazon-rds-for-microsoft-sql-server/
It is exactly what you're trying to achieve with all details re. S3 bucket policy, etc. This cross-account bucket policy is usually the pain point: if you adapt the version of the post to your context, you should be all good.
Best
Didier
one more thing is both RDS and S3 are in different account and region also.
Relevant content
- asked a year ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago
Also, you can take a look at this blog post for possible reasons of the access denied error. Hope you find this useful.