Restore RDS SQL backup from S3 bucket across accounts

Question

I am looking a solution to restore RDS SQL backup from cross account s3 bucket. it is working within the account but i need it from across the accounts account.

I tried making bucket policies, assigning roles across account. same error occurred every time i ran query to restore.

[2023-07-24 13:22:22.167] Aborted the task because of a task failure or a concurrent RESTORE_DB request. 
[2023-07-24 13:22:22.243] Task has been aborted 
[2023-07-24 13:22:22.247] Access Denied

Regards,
Ali

Answer

You need to make sure of following:

1. Roles at restoration account must have access to:

a. Other account s3 bucket where backup is saved

b. KMS key of other account s3 bucket

2. At other account, where s3 bucket has backup:

a. s3 bucket policy must allow access to the role which is being used to restore.

b. KMS key policy must allow access to the role which is being used to restore.

Refer this [blog post](https://aws.amazon.com/blogs/database/setting-up-for-cross-account-native-backup-and-restore-in-amazon-rds-for-microsoft-sql-server/).

Hope it helps.

Abhishek

Answer

Hi,
please, follow https://aws.amazon.com/blogs/database/setting-up-for-cross-account-native-backup-and-restore-in-amazon-rds-for-microsoft-sql-server/

It is exactly what you're trying to achieve with all details re. S3 bucket policy, etc.
This cross-account bucket policy is usually the pain point: if you adapt the version of the post to your context, you should be all good.

Best

Didier

Answer

one more thing is both RDS and S3 are in different account and region also.

Restore RDS SQL backup from S3 bucket across accounts

Relevant content